Vulnerabilities > CVE-2021-29365 - Infinite Loop vulnerability in Irfanview 4.57

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
irfanview
CWE-835
NVD
Published: 2021-09-28
Updated: 2021-10-06

Summary

Irfanview 4.57 is affected by an infinite loop when processing a crafted BMP file in the EFFECTS!AutoCrop_W component. This can cause a denial of service (DOS).

Vulnerable Configurations

Part Description Count
Application
Irfanview
1

Common Weakness Enumeration (CWE)

References