Vulnerabilities > Irfanview

DATE CVE VULNERABILITY TITLE RISK
2017-10-22 CVE-2017-15739 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview
IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls subsequent Write Address starting at CADIMAGE+0x00000000000042d5."
local
low complexity
irfanview CWE-119
7.8
2017-10-22 CVE-2017-15738 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview
IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADIMAGE+0x00000000003d22d8."
local
low complexity
irfanview CWE-119
7.8
2017-10-22 CVE-2017-15737 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview
IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADIMAGE+0x00000000003d246f."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15264 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview 4.44
IrfanView version 4.44 (32bit) allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .tif file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at image00000000_00400000+0x00000000000236e4."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15263 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF
IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlListWalk+0x00000000000166c4."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15262 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF
IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .pdf file, related to "Data from Faulting Address controls Code Flow starting at PDF!xmlParserInputRead+0x0000000000048d0c."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15261 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF
IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Possible Stack Corruption starting at PDF!xmlGetGlobalState+0x0000000000057b35."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15260 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF
IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address may be used as a return value starting at PDF!xmlParserInputRead+0x0000000000129a59."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15259 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF
IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlParserInputRead+0x000000000011624a."
local
low complexity
irfanview CWE-119
7.8
2017-10-11 CVE-2017-15258 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF
IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Read Access Violation starting at PDF!xmlParserInputRead+0x0000000000161a9c."
local
low complexity
irfanview CWE-119
7.8