Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large XPM file that triggers a heap-based buffer overflow.
Max CVSS
9.3
EPSS Score
5.13%
Published
2009-04-09
Updated
2018-10-11
1 vulnerabilities found