14 matches found
EUVD-2009-0206
Malware in sbrugna...
CVE-2020-23551
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000007e30...
CVE-2020-23563
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptionsW+0x0000000000002cba...
CVE-2020-13905
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000038ed4...
IrfanView JLS Formats PlugIn Heap Overflow
No description provided by source. Summary ======= IrfanView Formats PlugIn is prone to an overflow condition. The JLS Plugin jpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a...
IrfanView远程缓冲区溢出漏洞
BUGTRAQ ID: 64561 CVECAN ID: CVE-2013-6932 IrfanView是一款快速、免费的图像查看器、浏览器、转换器。FORMATS插件可允许IrfanView读取不常见图形格式。 IrfanView 4.36及其他版本在实现上存在缓冲区溢出漏洞,使用了多字节的目录名称后,远程攻击者通过缩略图窗口内的缩略图提示信息功能所处理过的特制文件,利用此漏洞可执行任意代码。 0 IrfanView IrfanView 4.37 厂商补丁: IrfanView --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
IrfanView Formats插件'MrSID.dll'栈缓冲区溢出漏洞
BUGTRAQ ID: 64385 CVECAN ID: CVE-2013-3944 IrfanView是一款快速、免费的图像查看器、浏览器、转换器。FORMATS插件可允许IrfanView读取不常见图形格式。 Formats PlugIn 4.36版本处理 "IMAGE::" 标签中,MrSID插件MrSID.dll存在边界错误,成功利用后可造成栈缓冲区溢出。 0 IrfanView Formats Plug-in 4.36 厂商补丁: IrfanView --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
IrfanView Formats Plugin TTF File Buffer Overflow Vulnerability
The version of the IrfanView Formats plugin Formats.dll was found to be less than 4.34. Such versions are affected by a stack-based buffer overflow caused by insufficient bounds checking when parsing TTF font names. An attacker could exploit this vulnerability to execute arbitrary code by trickin...
IrfanView JLS Formats PlugIn - Heap Overflow
Summary ======= IrfanView Formats PlugIn is prone to an overflow condition. The JLS Plugin jpegls.dll library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a context-dependent attacker could potentiall...
CVE-2009-0197
Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service application crash via a large XPM file that triggers a heap-based buffer overflow...
CVE-2009-0197
Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service application crash via a large XPM file that triggers a heap-based buffer overflow...
Integer overflow
Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service application crash via a large XPM file that triggers a heap-based buffer overflow...
CVE-2009-0197
Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service application crash via a large XPM file that triggers a heap-based buffer overflow...
CVE-2009-0197
CVE-2009-0197 concerns IrfanView’s Formats plug-in: an integer overflow in XPM parsing before version 4.23 leading to a heap-based overflow. This can allow remote code execution or cause a denial of service (application crash) when a specially crafted large XPM file is opened. The vulnerability s...