Arbitrary Code Execution and Denial of Service Vulnerability in IrfanView 4.44 (32bit) via Crafted .rle File

CVE-2017-10730 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at FORMATS!GetPlugInInfo+0x0000000000007d96."

Learn more about our User Device Pen Test.