13 matches found
CVE-2017-9919
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpResCompareResourceNames+0x0000000000000087."...
CVE-2017-9918
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!QueryOptionalDelayLoadedAPI+0x0000000000000c42."...
CVE-2017-9916
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!RtlFreeHandle+0x00000000000001b6."...
CVE-2017-9917
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at...
Design/Logic Flaw
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at...
Design/Logic Flaw
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!RtlFreeHandle+0x00000000000001b6."...
Code injection
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpCompareResourceNamesU+0x0000000000000062."...
CVE-2017-9923
IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!EnumResourceTypesInternal+0x0000000000000589."...
CVE-2017-9918
CVE-2017-9918 affects IrfanView 4.44 with TOOLS Plugin 4.50. A crafted file can trigger a denial of service or execute arbitrary code due to Data from Faulting Address controlling Branch Selection starting at KERNELBASE!QueryOptionalDelayLoadedAPI. Public references describe multiple related buff...
CVE-2017-9915
Affected software: IrfanView 4.44 (32‑bit) with TOOLS plugin 4.50. The CVE-2017-9915 entry describes an attacker-controlled crafted file that triggers a Read Access Violation in a memory copy operation (ntdll_77df0000!memcpy) and related memory/heap handling, enabling arbitrary code execution or ...
CVE-2017-9920
CVE-2017-9920 affects IrfanView 4.44 (32‑bit) with TOOLS Plugin 4.50. Technical details in connected docs describe multiple buffer overflow and related vulnerability patterns (e.g., data from faulting address controlling branch/code flow) that can lead to denial of service or arbitrary code execu...
CVE-2017-9923
CVE-2017-9923 affects IrfanView 4.44 (32‑bit) with TOOLS Plugin 4.50. The connected CNVD entry confirms a buffer overflow in this configuration when processing a crafted file, enabling a potential attacker to cause a denial of service or execute arbitrary code. The root cause is described as a bu...
CVE-2017-9919
IrfanView 4.44 (32‑bit) with TOOLS Plugin 4.50 is vulnerable to crafted files that may cause a denial of service or arbitrary code execution. The root cause involves data from a faulting address affecting control flow (notably LdrpResCompareResourceNames) and related memory/heap/branch control is...