CVE-2017-9877

IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at FPX!FPX_GetScanDevicePropertyGroup+0x000000000000c998."
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:*:*
cpe:2.3:a:irfanview:fpx:4.46:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-07-05 20:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-9877

Mitre link : CVE-2017-9877

CVE.ORG link : CVE-2017-9877


JSON object : View

Products Affected

irfanview

  • fpx
  • irfanview
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer