3 matches found
CVE-2013-3946
CVE-2013-3946 affects the IrfanView MrSID plugin (MrSID.dll) prior to version 4.37. A heap-based buffer overflow is triggered via the levels header in a SID file, enabling remote attackers to execute arbitrary code. The vulnerability is exploitable remotely; impact is arbitrary code execution. Re...
CVE-2013-3944
CVE-2013-3944 affects the IrfanView MrSID plugin (MrSID.dll) prior to version 4.37. The vulnerability is a stack-based buffer overflow in the handling of the IMAGE tag, which can allow an attacker to execute arbitrary code on a vulnerable host. This CVE is referenced in related advisories indicat...
CVE-2013-3945
The CVE-2013-3945 entry concerns the IrfanView MrSID plugin (MrSID.dll) prior to version 4.37. The vulnerability arises from improper validation of the nband tag, enabling an attacker to remotely execute arbitrary code via processing a crafted SID file. Impact is arbitrary code execution with pot...