The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote malicious users to cause a denial of service (unhandled exception) via an invalid RVA address function pointer in (1) an IMAGE_THUNK_DATA structure, involving the (a) OriginalFirstThunk and (b) FirstThunk IMAGE_IMPORT_DESCRIPTOR fields, or (2) the AddressOfNames IMAGE_EXPORT_DIRECTORY field in a PE file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fransois gannier fileinfo plugin 2.09 |
||
ghisler total commander |