CVE-2019-17254 - Out-Of-Bounds Write vulnerability in Irfanview

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at FORMATS!Read_BadPNG+0x0000000000000101.

Vulnerable Configurations

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write