SB2019092525 - Multiple vulnerabilities in IrfanView

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2019092525

SB2019092525 - Multiple vulnerabilities in IrfanView

Published: September 25, 2019 Updated: August 8, 2020

Security Bulletin ID SB2019092525
Severity
High
Patch available
YES
Number of vulnerabilities 19
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 79% Medium 5% Low 16%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 19 secuirty vulnerabilities.


1) Out-of-bounds write (CVE-ID: CVE-2019-17241)

The vulnerability allows a local authenticated user to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000d563.


2) Out-of-bounds write (CVE-ID: CVE-2019-17242)

The vulnerability allows a local authenticated user to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000966f.


3) Buffer overflow (CVE-ID: CVE-2019-17243)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000003155.


4) Buffer overflow (CVE-ID: CVE-2019-17244)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000001d8a.


5) Out-of-bounds write (CVE-ID: CVE-2019-17245)

The vulnerability allows a local authenticated user to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x0000000000004359.


6) Out-of-bounds write (CVE-ID: CVE-2019-17246)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000258c.


7) Buffer overflow (CVE-ID: CVE-2019-17247)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEG_LS+0x0000000000007da8.


8) Out-of-bounds write (CVE-ID: CVE-2019-17248)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x00000000000025b6.


9) Out-of-bounds write (CVE-ID: CVE-2019-17249)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000d57b.


10) Out-of-bounds write (CVE-ID: CVE-2019-17250)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x00000000000042f5.


11) Out-of-bounds write (CVE-ID: CVE-2019-17251)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at FORMATS!GetPlugInInfo+0x0000000000007d43.


12) Out-of-bounds write (CVE-ID: CVE-2019-17252)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at FORMATS!Read_BadPNG+0x0000000000000115.


13) Out-of-bounds write (CVE-ID: CVE-2019-17253)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at JPEG_LS+0x000000000000a6b8.


14) Out-of-bounds write (CVE-ID: CVE-2019-17254)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at FORMATS!Read_BadPNG+0x0000000000000101.


15) Out-of-bounds write (CVE-ID: CVE-2019-17255)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at EXR!ReadEXR+0x0000000000010836.


16) Out-of-bounds write (CVE-ID: CVE-2019-17256)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows a User Mode Write AV starting at DPX!ReadDPX_W+0x0000000000001203.


17) Improper Check for Unusual or Exceptional Conditions (CVE-ID: CVE-2019-17257)

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

IrfanView 4.53 allows a Exception Handler Chain to be Corrupted starting at EXR!ReadEXR+0x000000000002af80.


18) Out-of-bounds write (CVE-ID: CVE-2019-17258)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEG_LS+0x000000000000839c.


19) Buffer overflow (CVE-ID: CVE-2019-16887)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

In IrfanView 4.53, Data from a Faulting Address controls a subsequent Write Address starting at image00400000+0x000000000001dcfc.


Remediation

Install update from vendor's website.

References