IrfanView Multiple BMP Denial of Service Vulnerabilities
BID:23318
Info
IrfanView Multiple BMP Denial of Service Vulnerabilities
| Bugtraq ID: | 23318 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 04 2007 12:00AM |
| Updated: | Apr 06 2007 02:22AM |
| Credit: | Ivan Fratric is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
IrfanView IrfanView 3.99 |
| Not Vulnerable: | |
Discussion
IrfanView Multiple BMP Denial of Service Vulnerabilities
IrfanView is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files.
Successfully exploiting these issues allows attackers to crash the affected application. Due to the nature of the issues, code execution may also be possible, but this has not been confirmed.
IrfanView 3.99 is affected; other versions may also be vulnerable.
IrfanView is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files.
Successfully exploiting these issues allows attackers to crash the affected application. Due to the nature of the issues, code execution may also be possible, but this has not been confirmed.
IrfanView 3.99 is affected; other versions may also be vulnerable.
Exploit / POC
IrfanView Multiple BMP Denial of Service Vulnerabilities
The following exploit code creates multiple BMP files sufficient to trigger these issues. The resulting 'rle8of3.bmp' and 'rle8of4.bmp' files are relevant to this BID.
The following exploit code creates multiple BMP files sufficient to trigger these issues. The resulting 'rle8of3.bmp' and 'rle8of4.bmp' files are relevant to this BID.
Solution / Fix
IrfanView Multiple BMP Denial of Service Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
IrfanView Multiple BMP Denial of Service Vulnerabilities
References:
References:
- IrfanView Homepage (irfan skiljan)
- Several Windows image viewers vulnerabilities (Ivan Fratric)
- Several Windows image viewers vulnerabilities ("Ivan Fratric"
)