Lucene search
HistoryNov 17, 2012 - 9:55 p.m.
CVE-2012-5904
cve-2012-5904
irfanview
buffer overflow
code execution
rle compressed bitmap
security vulnerability
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
High
0.062 Low
EPSS
Percentile
93.6%
Heap-based buffer overflow in IrfanView before 4.33 allows remote attackers to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image.
Affected configurations
Node
irfanviewirfanviewRange≤4.32
ORirfanviewirfanviewMatch1.70
ORirfanviewirfanviewMatch1.80
ORirfanviewirfanviewMatch1.85
ORirfanviewirfanviewMatch1.90
ORirfanviewirfanviewMatch1.95
ORirfanviewirfanviewMatch1.97
ORirfanviewirfanviewMatch1.98
ORirfanviewirfanviewMatch1.98a
ORirfanviewirfanviewMatch1.99
ORirfanviewirfanviewMatch2.00
ORirfanviewirfanviewMatch2.05
ORirfanviewirfanviewMatch2.07
ORirfanviewirfanviewMatch2.10
ORirfanviewirfanviewMatch2.12
ORirfanviewirfanviewMatch2.15
ORirfanviewirfanviewMatch2.17
ORirfanviewirfanviewMatch2.18
ORirfanviewirfanviewMatch2.20
ORirfanviewirfanviewMatch2.22
ORirfanviewirfanviewMatch2.25
ORirfanviewirfanviewMatch2.27
ORirfanviewirfanviewMatch2.30
ORirfanviewirfanviewMatch2.32
ORirfanviewirfanviewMatch2.35
ORirfanviewirfanviewMatch2.37
ORirfanviewirfanviewMatch2.40
ORirfanviewirfanviewMatch2.50
ORirfanviewirfanviewMatch2.52
ORirfanviewirfanviewMatch2.55
ORirfanviewirfanviewMatch2.60
ORirfanviewirfanviewMatch2.63
ORirfanviewirfanviewMatch2.65
ORirfanviewirfanviewMatch2.66
ORirfanviewirfanviewMatch2.68
ORirfanviewirfanviewMatch2.80
ORirfanviewirfanviewMatch2.82
ORirfanviewirfanviewMatch2.83
ORirfanviewirfanviewMatch2.85
ORirfanviewirfanviewMatch2.90
ORirfanviewirfanviewMatch2.92
ORirfanviewirfanviewMatch2.95
ORirfanviewirfanviewMatch2.97
ORirfanviewirfanviewMatch2.98
ORirfanviewirfanviewMatch3.00
ORirfanviewirfanviewMatch3.02
ORirfanviewirfanviewMatch3.05
ORirfanviewirfanviewMatch3.07
ORirfanviewirfanviewMatch3.10
ORirfanviewirfanviewMatch3.12
ORirfanviewirfanviewMatch3.15
ORirfanviewirfanviewMatch3.17
ORirfanviewirfanviewMatch3.20
ORirfanviewirfanviewMatch3.21
ORirfanviewirfanviewMatch3.25
ORirfanviewirfanviewMatch3.30
ORirfanviewirfanviewMatch3.33
ORirfanviewirfanviewMatch3.35
ORirfanviewirfanviewMatch3.36
ORirfanviewirfanviewMatch3.50
ORirfanviewirfanviewMatch3.51
ORirfanviewirfanviewMatch3.60
ORirfanviewirfanviewMatch3.61
ORirfanviewirfanviewMatch3.70
ORirfanviewirfanviewMatch3.75
ORirfanviewirfanviewMatch3.80
ORirfanviewirfanviewMatch3.85
ORirfanviewirfanviewMatch3.90
ORirfanviewirfanviewMatch3.91
ORirfanviewirfanviewMatch3.92
ORirfanviewirfanviewMatch3.95
ORirfanviewirfanviewMatch3.97
ORirfanviewirfanviewMatch3.98
ORirfanviewirfanviewMatch3.99
ORirfanviewirfanviewMatch4.00
ORirfanviewirfanviewMatch4.10
ORirfanviewirfanviewMatch4.20
ORirfanviewirfanviewMatch4.23
ORirfanviewirfanviewMatch4.25
ORirfanviewirfanviewMatch4.27
ORirfanviewirfanviewMatch4.28
ORirfanviewirfanviewMatch4.30
Related
nvd
nvd
CVE-2012-5904
2012-11-17 21:55:05
prion
prion
Heap overflow
2012-11-17 21:55:00
nessus
nessus
IrfanView < 4.33 Boundary Error Multiple Image File Handling Remote Overflow
2012-04-03 00:00:00
cvelist
cvelist
CVE-2012-5904
2012-11-17 21:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
High
0.062 Low
EPSS
Percentile
93.6%
Related for CVE-2012-5904