Home

CVE-2021-29365

Description

Irfanview 4.57 is affected by an infinite loop when processing a crafted BMP file in the EFFECTS!AutoCrop_W component. This can cause a denial of service (DOS).

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.165

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2021-29364,CVE-2021-29365,CVE-2021-29366 are affected in IrfanView (64-bit) 4.57Windows
Vulnerabilities CVE-2021-29364,CVE-2021-29365,CVE-2021-29366 are affected in IrfanView 4.57Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-319777IrfanView (64-bit) (4.58)
PATCH-319776IrfanView (4.58)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234