CVE-2010-1510
IrfanView < 4.27 - Heap-Based Buffer Overflow via Crafted PSD Image
Title source: llmDescription
Heap-based buffer overflow in IrfanView before 4.27 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PSD image with RLE compression.
References (8)
Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/40105
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39036
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/64628
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/58549
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/511275/100/0/threaded
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2010-42
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7397
Various Sources x_refsource_confirm
http://irfanview.com/main_history.htm
Scores
EPSS
0.0476
EPSS Percentile
89.6%
Details
CWE
CWE-119
Status
published
Products (50)
irfanview/irfanview
1.70
irfanview/irfanview
1.75
irfanview/irfanview
1.80
irfanview/irfanview
1.85
irfanview/irfanview
1.90
irfanview/irfanview
1.95
irfanview/irfanview
1.97
irfanview/irfanview
1.98
irfanview/irfanview
1.98a
irfanview/irfanview
1.99
... and 40 more
Published
May 14, 2010
Tracked Since
Feb 18, 2026