CVE-2013-3946
CVE-2013-3946
In short
A security flaw in IrfanView's MrSID image plugin allows attackers to crash the program or run malicious code by opening a specially crafted image file with a corrupted levels header.
Technical detail
Heap-based buffer overflow in MrSID.dll (versions before 4.37) triggered via malformed levels header in MrSID image files; remote attack vector requiring user to open crafted file; results in code execution with privileges of the application user.
Summary generated and translated by AI from the official description.
Heap-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a levels header.
Affected products
IrfanView · MrSID pluginWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →