CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9891
https://notcve.org/view.php?id=CVE-2017-9891
IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at FPX!FPX_GetScanDevicePropertyGroup+0x0000000000007053." IrfanView en su versión 4.44 (32bit) con el plugin FPX 4.46 permite a atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante la manipulación de un archivo .fpx, relacionado a "Data from Faulting Address es used como uno o mas argumentos en una subsecuencia Function Call comenzando en FPX!FPX_GetScanDevicePropertyGroup+0x0000000000007053." • http://www.irfanview.com/plugins.htm https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9891 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-8369
https://notcve.org/view.php?id=CVE-2017-8369
IrfanView version 4.44 (32bit) has a "Data from Faulting Address controls Branch Selection starting at USER32!wvsprintfA+0x00000000000002f3" issue, which might allow attackers to execute arbitrary code via a crafted file. IrfanView versión 4.44 (en 32 bits), presenta un problema de "Data from Faulting Address controls Branch Selection starting at USER32!wvsprintfA+0x00000000000002f3", lo que podría permitir a atacantes ejecutar código arbitrario por medio de un archivo especialmente diseñado. • http://www.irfanview.com/plugins.htm https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-8369 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10732
https://notcve.org/view.php?id=CVE-2017-10732
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpAllocateHeap+0x0000000000000429." IrfanView versión 4.44 (en 32 bits), podría permitir a los atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado por medio de un archivo .rle creado, relacionado a "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpAllocateHeap+0x0000000000000429." • http://www.irfanview.com/plugins.htm https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-10732 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9884
https://notcve.org/view.php?id=CVE-2017-9884
IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpCoalesceFreeBlocks+0x00000000000001b6." IrfanView en su versión 4.44 (32bit) con el plugin FPX 4.46 permite a atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante un archivo .fpx manipulado relacionado a "Data from Faulting Address controls Branch Selection comenzando en ntdll_77df0000!RtlpCoalesceFreeBlocks+0x00000000000001b6." • http://www.irfanview.com/plugins.htm https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9884 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9886
https://notcve.org/view.php?id=CVE-2017-9886
IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpLowFragHeapFree+0x000000000000001f." IrfanView en su versión 4.44 (32bit) con el plugin FPX 4.46 permite a atacantes causar una denegación de servicio o posiblemente tener otro impacto no especificado mediante un archivo .fpx manipulado, relacionado a "Data from Faulting Address controls Branch Selection comenzando en ntdll_77df0000!RtlpLowFragHeapFree+0x000000000000001f." • http://www.irfanview.com/plugins.htm https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9886 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •