IrfanView Formats PlugIn 'NCSEcw.dll' Heap Based Buffer Overflow Vulnerability
BID:53744
Info
IrfanView Formats PlugIn 'NCSEcw.dll' Heap Based Buffer Overflow Vulnerability
| Bugtraq ID: | 53744 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | May 31 2012 12:00AM |
| Updated: | Jun 04 2012 12:31PM |
| Credit: | Francis Provencher |
| Vulnerable: |
IrfanView Formats PlugIn 4.33 |
| Not Vulnerable: |
IrfanView Formats PlugIn 4.34 |
Discussion
IrfanView Formats PlugIn 'NCSEcw.dll' Heap Based Buffer Overflow Vulnerability
The Formats PlugIn for IrfanView is prone to a remote heap-based buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
Successful exploits allow remote attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts likely result in denial-of-service conditions.
Formats PlugIn 4.33 is vulnerable; other versions may also be affected.
The Formats PlugIn for IrfanView is prone to a remote heap-based buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
Successful exploits allow remote attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts likely result in denial-of-service conditions.
Formats PlugIn 4.33 is vulnerable; other versions may also be affected.
Exploit / POC
IrfanView Formats PlugIn 'NCSEcw.dll' Heap Based Buffer Overflow Vulnerability
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
Solution / Fix
IrfanView Formats PlugIn 'NCSEcw.dll' Heap Based Buffer Overflow Vulnerability
Solution:
The vendor has fixed the issue. Please see the references for more information.
Solution:
The vendor has fixed the issue. Please see the references for more information.
References
IrfanView Formats PlugIn 'NCSEcw.dll' Heap Based Buffer Overflow Vulnerability
References:
References:
- IrfanView 4.33 Format PlugIn ECW Decompression Heap Overflow (Protek Research Lab's)
- IrfanView Homepage (IrfanView)
- IrfanView PlugIns (IrfanView)