QwikSec

Security Database

CVE

CWE

Training

CVE-2013-6932

Published: Dec 28, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Buffer overflow in IrfanView before 4.37, when a multibyte-character directory name is used, allows user-assisted remote attackers to execute arbitrary code via a crafted file that is incorrectly handled by the Thumbnail tooltips feature in the Thumbnails window.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_JVN

http://www.irfanview.com/main_history.htm

x_refsource_CONFIRM

JVNDB-2013-000120

third-party-advisory

x_refsource_JVNDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.