CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9920
https://notcve.org/view.php?id=CVE-2017-9920
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpResSearchResourceInsideDirectory+0x000000000000029e." IrfanView en su versión 4.44 (32bits) con el plugin TOOLS en su versión 4.50 puede que permita a un atacante causar una denegación de servicio o ejecutar código arbitrario mediantes un archivo modificado, relacionado a "Data from Faulting Address controls Branch Selection que comienza en ntdll_77df0000!LdrpResSearchResourceInsideDirectory+0x000000000000029e." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9920 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9922
https://notcve.org/view.php?id=CVE-2017-9922
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpCompareResourceNames_U+0x0000000000000062." IrfanView en su versión 4.44 (32bits) con el plugin TOOLS en su versión 4.50 puede que permita a un atacante causar una denegación de servicio o ejecutar código arbitrario mediantes un archivo modificado, relacionado a "Data from Faulting Address controls Branch Selection que comienza en ntdll_77df0000!LdrpCompareResourceNames_U+0x0000000000000062." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9922 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9530
https://notcve.org/view.php?id=CVE-2017-9530
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ntdll_77df0000!LdrpResCompareResourceNames+0x0000000000000150." IrfanView versión 4.44 (en 32 bits), podría permitir a atacantes causar una denegación de servicio o ejecutar código arbitrario por medio de un archivo especialmente diseñado, relacionado a "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ntdll_77df0000!LdrpResCompareResourceNames+0x0000000000000150." • http://www.irfanview.net/main_history.htm https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9530 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9921
https://notcve.org/view.php?id=CVE-2017-9921
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpResGetMappingSize+0x00000000000003cc." IrfanView en su versión 4.44 (32bits) con el plugin TOOLS en su versión 4.50 puede que permita a un atacante causar una denegación de servicio o ejecutar código arbitrario mediantes un archivo modificado, relacionado a "Data from Faulting Address controls Branch Selection que comienza en ntdll_77df0000!LdrpResGetMappingSize+0x00000000000003cc." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9921 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9916
https://notcve.org/view.php?id=CVE-2017-9916
IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlFreeHandle+0x00000000000001b6." IrfanView en su versión 4.44 (32bits) con el plugin TOOLS en su versión 4.50 puede que permita a un atacante causar una denegación de servicio o ejecutar código arbitrario mediantes un archivo modificado, relacionado a "Data from Faulting Address controls Branch Selection que comienza en ntdll_77df0000!RtlFreeHandle+0x00000000000001b6." • https://github.com/wlinzi/security_advisories/tree/master/CVE-2017-9916 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •