Irfanview

irfanview

Vendor: Irfanview • 271 CVEs

CVEs (271)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-23561 1Irfanview 1Irfanview Nov 21, 2024 Jul 18, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptions_W+0x0000000000005722.
CVE-2021-46064 1Irfanview 1Irfanview Nov 21, 2024 Mar 23, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 IrfanView 4.59 is vulnerable to buffer overflow via the function at address 0x413c70 (in 32bit version of the binary). The vulnerability triggers when the user opens malicious .tiff image.
CVE-2020-23545 1Irfanview 1Irfanview Nov 21, 2024 Dec 15, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ReadXPM_W+0x0000000000000531.
CVE-2020-23567 1Irfanview 1Irfanview Nov 21, 2024 Nov 5, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Irfanview v4.53 allows attackers to to cause a denial of service (DoS) via a crafted JPEG 2000 file. Related to "Integer Divide By Zero starting at JPEG2000!ShowPlugInSaveOptions_W+0x00000000000082ea"
CVE-2020-23566 1Irfanview 1Irfanview Nov 21, 2024 Nov 5, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Irfanview v4.53 was discovered to contain an infinity loop via JPEG2000!ShowPlugInSaveOptions_W+0x1ecd8.
CVE-2020-23565 1Irfanview 1Irfanview Nov 21, 2024 Nov 5, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Irfanview v4.53 allows attackers to execute arbitrary code via a crafted JPEG 2000 file. Related to a "Data from Faulting Address controls Branch Selection starting at JPEG2000!ShowPlugInSaveOptions_W+0x0000000000032850"...Show more Irfanview v4.53 allows attackers to execute arbitrary code via a crafted JPEG 2000 file. Related to a "Data from Faulting Address controls Branch Selection starting at JPEG2000!ShowPlugInSaveOptions_W+0x0000000000032850".Show less
CVE-2020-23549 1Irfanview 1Irfanview Nov 21, 2024 Oct 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted .cr2 file, related to a "Data from Faulting Address controls Branch Selection starting at FORMATS!GetPlugIn...Show more IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted .cr2 file, related to a "Data from Faulting Address controls Branch Selection starting at FORMATS!GetPlugInInfo+0x00000000000047f6".Show less
CVE-2020-23546 1Irfanview 1Irfanview Nov 21, 2024 Oct 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted XBM file, related to a "Data from Faulting Address is used as one or more arguments in a subsequent Functio...Show more IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted XBM file, related to a "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at FORMATS!ReadMosaic+0x0000000000000981.Show less
CVE-2021-29367 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file.
CVE-2021-29366 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in FORMATS!GetPlugInInfo+0x2de9 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.
CVE-2021-29365 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Irfanview 4.57 is affected by an infinite loop when processing a crafted BMP file in the EFFECTS!AutoCrop_W component. This can cause a denial of service (DOS).
CVE-2021-29364 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in Formats!ReadRAS_W+0x1001 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.
CVE-2021-29363 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in FORMATS!ReadRAS_W+0xa74 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.0xa74
CVE-2021-29362 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in FORMATS!ReadRAS_W+0xa30 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.
CVE-2021-29361 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in FORMATS!Read_Utah_RLE+0x340 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.
CVE-2021-29360 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in FORMATS!Read_Utah_RLE+0x37a of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.
CVE-2021-29358 1Irfanview 1Irfanview Nov 21, 2024 Sep 28, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer overflow vulnerability in FORMATS!ReadPVR_W+0xfa of Irfanview 4.57 allows attackers to cause a denial of service (DOS) via a crafted PVR file.
CVE-2020-35133 1Irfanview 1Irfanview Nov 21, 2024 Dec 16, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 irfanView 4.56 contains an error processing parsing files of type .pcx. Which leads to out-of-bounds writing at i_view32+0xdb60.
CVE-2020-13906 1Irfanview 1Irfanview Nov 21, 2024 Jun 10, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000038eb7.
CVE-2020-13905 1Irfanview 1Irfanview Nov 21, 2024 Jun 10, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000038ed4.

Previous 1...567...14 Next