2 matches found
CVE-2017-9880
IrfanView version 4.44 32bit with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at FPX+0x0000000000007236."...
CVE-2017-9880
The CVE concerns IrfanView 4.44 (32‑bit) with FPX Plugin 4.46. A crafted .fpx file triggers a vulnerability where Data from Faulting Address controls Code Flow in FPX, enabling arbitrary code execution or a denial of service. This is a local issue in the FPX plugin’s handling of FPX files and is ...