KLA11653
Multiple vulnerabilities in IrfanView

Updated: 06/03/2020
Detect date
?
10/08/2019
Severity
?
High
Description

Multiple vulnerabilities were found in IrfanView. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. User Mode Write Access Violation vulnerability in IrfanView can be exploited to cause denial of service.
  2. A faulting address control vulnerability in IrfanView can be exploited to obtain information.
  3. An Exception Handler Chain vulnerability in IrfanView can be exploited to cause denial of service.
Affected products

IrfanView 3.53 and earlier

Solution

Update to the latest version
Download IrfanView

Impacts
?
OSI 
[?]

DoS 
[?]
Related products
IrfanView
CVE-IDS
?
Find out the statistics of the vulnerabilities spreading in your region