KamasuOri/publicResearch

Releases0

Release some of my research

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-23565 ↗	Nov 5, 2021Friday, 5 November 2021, 17:15	7.8 HIGH	6.8 MEDIUM
Irfanview v4.53 allows attackers to execute arbitrary code via a crafted JPEG 2000 file. Related to a "Data from Faulting Address controls Branch Selection starting at JPEG2000!ShowPlugInSaveOptions_W+0x0000000000032850".
CVE-2020-23566 ↗	Nov 5, 2021Friday, 5 November 2021, 17:15	5.5 MEDIUM	4.3 MEDIUM
Irfanview v4.53 was discovered to contain an infinity loop via JPEG2000!ShowPlugInSaveOptions_W+0x1ecd8.
CVE-2020-23567 ↗	Nov 5, 2021Friday, 5 November 2021, 17:15	5.5 MEDIUM	4.3 MEDIUM
Irfanview v4.53 allows attackers to to cause a denial of service (DoS) via a crafted JPEG 2000 file. Related to "Integer Divide By Zero starting at JPEG2000!ShowPlugInSaveOptions_W+0x00000000000082ea"