Vulnerabilities > Irfanview > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-22 | CVE-2017-15742 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADIMAGE+0x00000000003d2328." | 6.8 |
| 2017-10-22 | CVE-2017-15741 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to "Possible Stack Corruption starting at CADIMAGE+0x00000000003d2378." | 6.8 |
| 2017-10-22 | CVE-2017-15740 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls Code Flow starting at CADIMAGE+0x000000000033228e." | 6.8 |
| 2017-10-22 | CVE-2017-15739 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls subsequent Write Address starting at CADIMAGE+0x00000000000042d5." | 6.8 |
| 2017-10-22 | CVE-2017-15738 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADIMAGE+0x00000000003d22d8." | 6.8 |
| 2017-10-22 | CVE-2017-15737 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview Cadimage and Irfanview IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADIMAGE+0x00000000003d246f." | 6.8 |
| 2017-10-11 | CVE-2017-15264 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview 4.44 IrfanView version 4.44 (32bit) allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .tif file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at image00000000_00400000+0x00000000000236e4." | 6.8 |
| 2017-10-11 | CVE-2017-15263 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address controls Branch Selection starting at PDF!xmlListWalk+0x00000000000166c4." | 6.8 |
| 2017-10-11 | CVE-2017-15262 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to execute arbitrary code or cause a denial of service via a crafted .pdf file, related to "Data from Faulting Address controls Code Flow starting at PDF!xmlParserInputRead+0x0000000000048d0c." | 6.8 |
| 2017-10-11 | CVE-2017-15261 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Irfanview and PDF IrfanView version 4.44 (32bit) with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to a "Possible Stack Corruption starting at PDF!xmlGetGlobalState+0x0000000000057b35." | 6.8 |