VYPR
High severity7.8NVD Advisory· Published Jul 5, 2017· Updated Jun 17, 2026

CVE-2017-9920

CVE-2017-9920

Description

IrfanView version 4.44 (32bit) with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpResSearchResourceInsideDirectory+0x000000000000029e."

Affected products

3
  • cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:x86:*+ 1 more
    • cpe:2.3:a:irfanview:irfanview:4.44:*:*:*:*:*:x86:*
    • (no CPE)range: =4.44
  • cpe:2.3:a:irfanview:tools:4.50:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.