Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irfanview irfanview 4.23 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2009-2118
Integer overflow in IrfanView 4.23, when the resampling or screen fitting option is enabled, allows remote malicious users to execute arbitrary code via a crafted TIFF 1 BPP image, which triggers a heap-based buffer overflow.
Irfanview Irfanview 4.23
676
VMScore
CVE-2013-6932
Buffer overflow in IrfanView prior to 4.37, when a multibyte-character directory name is used, allows user-assisted remote malicious users to execute arbitrary code via a crafted file that is incorrectly handled by the Thumbnail tooltips feature in the Thumbnails window.
Irfanview Irfanview 4.28
Irfanview Irfanview 4.32
Irfanview Irfanview 4.30
Irfanview Irfanview
Irfanview Irfanview 4.23
Irfanview Irfanview 4.27
Irfanview Irfanview 4.35
Irfanview Irfanview 4.20
Irfanview Irfanview 4.25
Irfanview Irfanview 4.33
Irfanview Irfanview 4.00
Irfanview Irfanview 4.10
435
VMScore
CVE-2011-5233
Heap-based buffer overflow in IrfanView prior to 4.32 allows remote malicious users to execute arbitrary code via crafted "Rows Per Strip" and "Samples Per Pixel" values in a TIFF image file.
Irfanview Irfanview 4.28
Irfanview Irfanview 4.27
Irfanview Irfanview 3.97
Irfanview Irfanview 3.95
Irfanview Irfanview 4.25
Irfanview Irfanview 4.23
Irfanview Irfanview 3.92
Irfanview Irfanview 3.91
Irfanview Irfanview 4.20
Irfanview Irfanview 4.10
Irfanview Irfanview 3.90
Irfanview Irfanview
Irfanview Irfanview 4.00
Irfanview Irfanview 3.99
Irfanview Irfanview 3.98
1 EDB exploit
605
VMScore
CVE-2012-5904
Heap-based buffer overflow in IrfanView prior to 4.33 allows remote malicious users to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image.
Irfanview Irfanview 4.28
Irfanview Irfanview 4.27
Irfanview Irfanview 3.98
Irfanview Irfanview 3.97
Irfanview Irfanview 3.75
Irfanview Irfanview 3.70
Irfanview Irfanview 3.30
Irfanview Irfanview 3.25
Irfanview Irfanview 3.07
Irfanview Irfanview 3.05
Irfanview Irfanview 2.90
Irfanview Irfanview 2.85
Irfanview Irfanview 2.60
Irfanview Irfanview 2.55
Irfanview Irfanview 2.30
Irfanview Irfanview 2.27
Irfanview Irfanview 2.12
Irfanview Irfanview 2.10
Irfanview Irfanview 2.07
Irfanview Irfanview 1.95
Irfanview Irfanview 1.90
Irfanview Irfanview
445
VMScore
CVE-2010-1509
IrfanView prior to 4.27 does not properly handle an unspecified integer variable during processing of PSD images, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image file that triggers a heap-...
Irfanview Irfanview
Irfanview Irfanview 4.23
Irfanview Irfanview 3.97
Irfanview Irfanview 3.95
Irfanview Irfanview 3.61
Irfanview Irfanview 3.60
Irfanview Irfanview 3.25
Irfanview Irfanview 3.21
Irfanview Irfanview 3.05
Irfanview Irfanview 3.02
Irfanview Irfanview 2.83
Irfanview Irfanview 2.82
Irfanview Irfanview 2.60
Irfanview Irfanview 2.55
Irfanview Irfanview 2.30
Irfanview Irfanview 2.27
Irfanview Irfanview 2.10
Irfanview Irfanview 2.07
Irfanview Irfanview 1.95
Irfanview Irfanview 1.90
Irfanview Irfanview 4.22
Irfanview Irfanview 4.20
445
VMScore
CVE-2010-1510
Heap-based buffer overflow in IrfanView prior to 4.27 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PSD image with RLE compression.
Irfanview Irfanview
Irfanview Irfanview 4.23
Irfanview Irfanview 3.95
Irfanview Irfanview 3.92
Irfanview Irfanview 3.61
Irfanview Irfanview 3.60
Irfanview Irfanview 3.25
Irfanview Irfanview 3.21
Irfanview Irfanview 3.20
Irfanview Irfanview 3.02
Irfanview Irfanview 3.98
Irfanview Irfanview 3.97
Irfanview Irfanview 3.75
Irfanview Irfanview 3.70
Irfanview Irfanview 3.33
Irfanview Irfanview 3.30
Irfanview Irfanview 3.07
Irfanview Irfanview 3.05
Irfanview Irfanview 2.90
Irfanview Irfanview 2.85
Irfanview Irfanview 2.63
Irfanview Irfanview 2.62
685
VMScore
CVE-2012-0897
Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns prior to 4.33 allows remote malicious users to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Irfanview Irfanview 2.32
Irfanview Irfanview 2.30
Irfanview Irfanview 2.62
Irfanview Irfanview 2.60
Irfanview Irfanview 2.35
Irfanview Irfanview 2.83
Irfanview Irfanview 2.66
Irfanview Irfanview 2.68
Irfanview Irfanview 2.95
Irfanview Irfanview
Irfanview Irfanview 2.22
Irfanview Irfanview 2.20
Irfanview Irfanview 2.50
Irfanview Irfanview 2.40
Irfanview Irfanview 2.80
Irfanview Irfanview 3.99
Irfanview Irfanview 3.02
Irfanview Irfanview 3.05
Irfanview Irfanview 1.90
Irfanview Irfanview 1.95
Irfanview Irfanview 2.10
Irfanview Irfanview 2.12
1 EDB exploit
668
VMScore
CVE-2013-5351
Heap-based buffer overflow in IrfanView prior to 4.37 allows remote malicious users to execute arbitrary code via the LZW code stream in a GIF file.
Irfanview Irfanview
Irfanview Irfanview 4.25
Irfanview Irfanview 4.23
Irfanview Irfanview 3.97
Irfanview Irfanview 3.95
Irfanview Irfanview 3.61
Irfanview Irfanview 3.60
Irfanview Irfanview 3.25
Irfanview Irfanview 3.21
Irfanview Irfanview 3.05
Irfanview Irfanview 3.02
Irfanview Irfanview 2.85
Irfanview Irfanview 2.83
Irfanview Irfanview 2.62
Irfanview Irfanview 2.60
Irfanview Irfanview 2.32
Irfanview Irfanview 2.30
Irfanview Irfanview 2.27
Irfanview Irfanview 2.12
Irfanview Irfanview 2.10
Irfanview Irfanview 1.97
Irfanview Irfanview 1.95
828
VMScore
CVE-2009-0197
Integer overflow in the FORMATS Plugin prior to 4.23 for IrfanView allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a large XPM file that triggers a heap-based buffer overflow.
Irfanview Formats
Irfanview Formats 4.20
Irfanview Formats 4.10
Irfanview Formats 4.00
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started