Vulnerabilities > Irfanview

DATE CVE VULNERABILITY TITLE RISK
2017-07-05 CVE-2017-9922 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpCompareResourceNames_U+0x0000000000000062."
4.4
2017-07-05 CVE-2017-9921 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpResGetMappingSize+0x00000000000003cc."
4.4
2017-07-05 CVE-2017-9920 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpResSearchResourceInsideDirectory+0x000000000000029e."
4.4
2017-07-05 CVE-2017-9919 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpResCompareResourceNames+0x0000000000000087."
4.4
2017-07-05 CVE-2017-9918 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!QueryOptionalDelayLoadedAPI+0x0000000000000c42."
4.4
2017-07-05 CVE-2017-9917 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ntdll_77df0000!RtlFreeHandle+0x0000000000000218."
4.4
2017-07-05 CVE-2017-9916 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Tools 4.50
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlFreeHandle+0x00000000000001b6."
local
low complexity
irfanview CWE-119
4.6
2017-07-05 CVE-2017-9915 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and Tools
IrfanView version 4.44 (32bit) with TOOLS plugin 4.50 allows attackers to execute arbitrary code or cause a denial of service via a crafted file, related to a "Read Access Violation on Block Data Move starting at ntdll_77df0000!memcpy+0x0000000000000033."
network
irfanview CWE-119
6.8
2017-07-05 CVE-2017-9892 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview FPX and Irfanview
IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpFreeHeap+0x0000000000000393."
network
irfanview CWE-119
6.8
2017-07-05 CVE-2017-9891 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview FPX and Irfanview
IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at FPX!FPX_GetScanDevicePropertyGroup+0x0000000000007053."
network
irfanview CWE-119
6.8