Arbitrary Code Execution and Denial of Service Vulnerability in IrfanView 4.44 (32bit) with FPX Plugin 4.46

Arbitrary Code Execution and Denial of Service Vulnerability in IrfanView 4.44 (32bit) with FPX Plugin 4.46

CVE-2017-9535 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!GetPlugInInfo+0x0000000000016e53."

Learn more about our User Device Pen Test.