Buffer overflow in IrfanView prior to 4.37, when a multibyte-character directory name is used, allows user-assisted remote malicious users to execute arbitrary code via a crafted file that is incorrectly handled by the Thumbnail tooltips feature in the Thumbnails window.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
irfanview irfanview 4.28 |
||
irfanview irfanview 4.32 |
||
irfanview irfanview 4.30 |
||
irfanview irfanview |
||
irfanview irfanview 4.23 |
||
irfanview irfanview 4.27 |
||
irfanview irfanview 4.35 |
||
irfanview irfanview 4.20 |
||
irfanview irfanview 4.25 |
||
irfanview irfanview 4.33 |
||
irfanview irfanview 4.00 |
||
irfanview irfanview 4.10 |
Vulmon