Vulnerabilities > CVE-2021-29365 - Infinite Loop vulnerability in Irfanview 4.57

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
irfanview
CWE-835
NVD
Published: 2021-09-28
Updated: 2021-10-06

Summary

Irfanview 4.57 is affected by an infinite loop when processing a crafted BMP file in the EFFECTS!AutoCrop_W component. This can cause a denial of service (DOS).

Vulnerable Configurations

Part Description Count
Application
Irfanview
1

Common Weakness Enumeration (CWE)

References