4 matches found
SUSE CVE-2017-15763
IrfanView 4.50 - 64bit with BabaCAD4Image plugin version 1.3 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls subsequent Write Address starting at BabaCAD4Image!ShowPlugInOptions+0x000000000001eca0."...
CVE-2019-17247
IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEGLS+0x0000000000007da8...
CVE-2017-15749
IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to "Data from Faulting Address controls Branch Selection starting at CADIMAGE+0x00000000000348b9."...
irfanviewiff-overflow.txt
/Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to fl0 fl0w. Gretez to all romanian...