Description

IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000007e28.

Related CPE's

a

irfanview

irfanview

4.54

*

*

*

*

*

x86

Vulnerable

References

https://github.com/nhiephon/Research

Third Party Advisory

https://www.irfanview.com/plugins.htm

Product

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-09-16T03:15:09.237

2 years ago

Last modified

2022-09-19T18:39:31.673

2 years ago