exploitDog

GHSA-vfw5-rhwh-5h4p

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.

Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.

Ссылки

EPSS

Процентиль: 99%

0.74313

Высокий

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2012-0897

nvd

около 14 лет назад

Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns before 4.33 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.

EPSS

Процентиль: 99%

0.74313

Высокий

CVE ID

Дефекты

CWE-119