CVE-2017-9885

IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at FPX!FPX_GetScanDevicePropertyGroup+0x0000000000006a98."
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:*:*
cpe:2.3:a:irfanview:fpx:4.46:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-07-05 20:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-9885

Mitre link : CVE-2017-9885

CVE.ORG link : CVE-2017-9885


JSON object : View

Products Affected

irfanview

  • fpx
  • irfanview
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer