Vulnerability-Lookup

CNVD-2017-14915

Vulnerability from cnvd - Published: 2017-07-18

Title

IrfanView整数溢出漏洞

Description

IrfanView是波黑软件开发者Irfan Skiljan所研发的一款图片浏览器，它支持图片浏览、图片编辑、图片格式转换等。 IrfanView 4.44版本中存在整数溢出漏洞。攻击者可利用该漏洞执行任意代码或造成拒绝服务。

Severity

中

Formal description

目前没有详细的解决方案提供： http://www.irfanview.com/

Reference

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0310 https://nvd.nist.gov/vuln/detail/CVE-2017-2813 http://www.securityfocus.com/bid/98046/solution

Impacted products

Name
IrfanView IrfanView 4.44

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "98046"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-2813"
    }
  },
  "description": "IrfanView\u662f\u6ce2\u9ed1\u8f6f\u4ef6\u5f00\u53d1\u8005Irfan Skiljan\u6240\u7814\u53d1\u7684\u4e00\u6b3e\u56fe\u7247\u6d4f\u89c8\u5668\uff0c\u5b83\u652f\u6301\u56fe\u7247\u6d4f\u89c8\u3001\u56fe\u7247\u7f16\u8f91\u3001\u56fe\u7247\u683c\u5f0f\u8f6c\u6362\u7b49\u3002\r\n\r\nIrfanView 4.44\u7248\u672c\u4e2d\u5b58\u5728\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Aleksandar Nikolic of Cisco Talos",
  "formalWay": "\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u89e3\u51b3\u65b9\u6848\u63d0\u4f9b\uff1a\r\nhttp://www.irfanview.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-14915",
  "openTime": "2017-07-18",
  "products": {
    "product": "IrfanView IrfanView 4.44"
  },
  "referenceLink": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0310\r\nhttps://nvd.nist.gov/vuln/detail/CVE-2017-2813\r\nhttp://www.securityfocus.com/bid/98046/solution",
  "serverity": "\u4e2d",
  "submitTime": "2017-06-23",
  "title": "IrfanView\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2017-2813 (GCVE-0-2017-2813)

Vulnerability from cvelistv5 – Published: 2017-06-21 19:00 – Updated: 2024-08-05 14:02

Summary

An exploitable integer overflow vulnerability exists in the JPEG 2000 parser functionality of IrfanView 4.44. A specially crafted jpeg2000 image can cause an integer overflow leading to wrong memory allocation resulting in arbitrary code execution. Vulnerability can be triggered by viewing the image in via the application or by using thumbnailing feature of IrfanView.

Severity

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

arbitrary code execution

Assigner

talos

References

2 references

URL	Tags
http://www.securityfocus.com/bid/98046	vdb-entryx_refsource_BID
https://www.talosintelligence.com/vulnerability_r…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
Irfanview	Irfanview	Affected: 4.44

Date Public

2017-04-26 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:02:07.858Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "98046",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/98046"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0310"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Irfanview",
          "vendor": "Irfanview",
          "versions": [
            {
              "status": "affected",
              "version": "4.44"
            }
          ]
        }
      ],
      "datePublic": "2017-04-26T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An exploitable integer overflow vulnerability exists in the JPEG 2000 parser functionality of IrfanView 4.44. A specially crafted jpeg2000 image can cause an integer overflow leading to wrong memory allocation resulting in arbitrary code execution. Vulnerability can be triggered by viewing the image in via the application or by using thumbnailing feature of IrfanView."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-19T18:22:41.000Z",
        "orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b",
        "shortName": "talos"
      },
      "references": [
        {
          "name": "98046",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/98046"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0310"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "talos-cna@cisco.com",
          "ID": "CVE-2017-2813",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Irfanview",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "4.44"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Irfanview"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An exploitable integer overflow vulnerability exists in the JPEG 2000 parser functionality of IrfanView 4.44. A specially crafted jpeg2000 image can cause an integer overflow leading to wrong memory allocation resulting in arbitrary code execution. Vulnerability can be triggered by viewing the image in via the application or by using thumbnailing feature of IrfanView."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": 8.8,
            "baseSeverity": "High",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "98046",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/98046"
            },
            {
              "name": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0310",
              "refsource": "MISC",
              "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0310"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b",
    "assignerShortName": "talos",
    "cveId": "CVE-2017-2813",
    "datePublished": "2017-06-21T19:00:00.000Z",
    "dateReserved": "2016-12-01T00:00:00.000Z",
    "dateUpdated": "2024-08-05T14:02:07.858Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-14915

CVE-2017-2813 (GCVE-0-2017-2813)

Tags

Sightings

Nomenclature