Vulnerabilities > CVE-2007-1867 - Remote Buffer Overflow vulnerability in Irfanview 3.99

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
irfanview
critical
exploit available
NVD
Published: 2007-04-04
Updated: 2017-10-19

Summary

Buffer overflow in IrfanView 3.99 allows remote attackers to execute arbitrary code via a crafted animated cursor (ANI) file.

Vulnerable Configurations

Part Description Count
Application
Irfanview
1

Exploit-Db

  • descriptionIrfanView 3.99 .ANI File Local Buffer Overflow Exploit (multiple targets). CVE-2007-1867. Local exploit for windows platform
    idEDB-ID:3692
    last seen2016-01-31
    modified2007-04-09
    published2007-04-09
    reporterBreno Silva Pinto
    sourcehttps://www.exploit-db.com/download/3692/
    titleIrfanView 3.99 - .ani Local Buffer Overflow Exploit multiple targets
  • descriptionIrfanView 3.99 (.ANI File) Local Buffer Overflow Exploit. CVE-2007-1867. Local exploit for windows platform
    fileexploits/windows/local/3648.c
    idEDB-ID:3648
    last seen2016-01-31
    modified2007-04-02
    platformwindows
    port
    published2007-04-02
    reporterMarsu
    sourcehttps://www.exploit-db.com/download/3648/
    titleIrfanView 3.99 - .ANI Local Buffer Overflow Exploit
    typelocal

References