FortiClient Vulnerability

Security Vulnerabilities fixed in FastStone Image Viewer 7.6

Description

FastStone Image Viewer v.<= 7.5 is affected by a Stack-based Buffer Overflow at 0x005BDF49, NULL at 0x005bdfc9, user mode write access violation at 0x00402d8a and 0x005bdfcb, affecting the CUR file parsing functionality (BITMAPINFOHEADER Structure, 'BitCount' file format field), that will end up corrupting the Structure Exception Handler (SEH). Attackers could exploit this issue to achieve code execution when a user opens or views a malformed/specially crafted CUR file. ALso, attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution.

Affected Applications

FastStone Image Viewer

CVE References

CVE-2021-26236 CVE-2021-26235 CVE-2021-26234 CVE-2021-26233 CVE-2020-35845 CVE-2020-35844 CVE-2020-35843

Other References

https://www.faststone.org

ID	4088
Created	Jan 26, 2022
Description Updated	Nov 07, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	FastStone Soft
Patch	manual
Application	FastStone Image Viewer

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Security Vulnerabilities fixed in FastStone Image Viewer 7.6

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Security Vulnerabilities fixed in FastStone Image Viewer 7.6

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center