Arbitrary Code Execution and Denial of Service Vulnerability in IrfanView 4.44 (32bit) with FPX Plugin 4.46

Arbitrary Code Execution and Denial of Service Vulnerability in IrfanView 4.44 (32bit) with FPX Plugin 4.46

CVE-2017-9883 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at FPX+0x0000000000007216."

Learn more about our Web Application Penetration Testing UK.