IrfanView Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability
BID:23262
Info
IrfanView Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 23262 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-1867 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 02 2007 12:00AM |
| Updated: | Nov 04 2008 02:35AM |
| Credit: | Marsu is credited with the discovery of this issue. |
| Vulnerable: |
IrfanView IrfanView 3.99 |
| Not Vulnerable: | |
Discussion
IrfanView Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability
IrfanView is prone to a buffer-overflow vulnerability because it fails to validate formats. Specifically, the issue occurs when handling malformed ANI cursor or icon files.
An attacker can exploit this issue to execute arbitrary code with the privileges of an unsuspecting user. A successful attack can result in the compromise of affected user accounts and computers.
This issue affects version 3.99.
IrfanView is prone to a buffer-overflow vulnerability because it fails to validate formats. Specifically, the issue occurs when handling malformed ANI cursor or icon files.
An attacker can exploit this issue to execute arbitrary code with the privileges of an unsuspecting user. A successful attack can result in the compromise of affected user accounts and computers.
This issue affects version 3.99.
Exploit / POC
IrfanView Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to access a specially crafted HTML document.
The following exploits are available:
To exploit this issue, an attacker must entice an unsuspecting user to access a specially crafted HTML document.
The following exploits are available:
Solution / Fix
IrfanView Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
IrfanView Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability
References:
References:
- IrfanView Homepage (IrfanView)