VYPR
High severity7.8NVD Advisory· Published Oct 11, 2017· Updated Jun 17, 2026

CVE-2017-15239

CVE-2017-15239

Description

IrfanView 4.44 - 32bit with PDF plugin version 4.43 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .pdf file, related to "Data from Faulting Address may be used as a return value starting at PDF!xmlParserInputRead+0x0000000000040db4."

Affected products

4
  • cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:x86:*+ 1 more
    • cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:x86:*
    • (no CPE)range: 4.44
  • cpe:2.3:a:irfanview:pdf:4.43:*:*:*:*:*:*:*
  • Range: 4.44 - 4.43

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.