VYPR
High severity7.8NVD Advisory· Published Jul 5, 2017· Updated Jun 17, 2026

CVE-2017-9918

CVE-2017-9918

Description

IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!QueryOptionalDelayLoadedAPI+0x0000000000000c42."

Affected products

3
  • cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:x86:*+ 1 more
    • cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:x86:*
    • (no CPE)range: =4.44
  • cpe:2.3:a:irfanview:tools:4.50:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.