Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Irfanview Plugins JLS Decompression
Jun 29 2012 10:54AM
Joseph Sheridan (joe reactionis com)
IrfanView Formats PlugIn is prone to an overflow condition. The JLS Plugin
(jpeg_ls.dll) library fails to properly sanitize user-supplied input
resulting in a heap-based buffer overflow. With a specially crafted JLS
compressed image file, a context-dependent attacker could potent...
[ more ]
Copyright 2010, SecurityFocus