Several Windows image viewers vulnerabilities
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: Several Windows image viewers vulnerabilities
- From: "Ivan Fratric" <ifsecure@xxxxxxxxx>
- Date: Wed, 4 Apr 2007 10:03:35 +0200
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=db+LZvB70k9MoP9fL4vCt0ejPlp+qCc9FYhQz9QCWW7AN3rywp5A/1SqGRFOe5+tdr4LSbwKNmz8z96jr0u0z40mTFJy38Z1jjNHuzejwCvnWLQ9Ay97mMic+X/P52P9QA4y/XJnT3Zg0P+d9Wnta9tb8FFMhLSMGjTbth0tJEI=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=XWT0B4iURs5BgudGCsJru5TnsHPcXTWB8dNeGC9oYpNbHniaTgSL7KG79Dc7SlzoOErL/MQeonY73VR4823a1/9Teft/5Bo232ZxOBB+jTGhvsXqZdl2MSDjAA7ojgmJg/ZR50E845XPZBB+LDer0FsgQ0d4bxBN+6t4RE6ANPI=
- List-help: <mailto:bugtraq-help@securityfocus.com>
- List-id: <bugtraq.list-id.securityfocus.com>
- List-post: <mailto:bugtraq@securityfocus.com>
- List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
- List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
- Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
I made a small research covering security of several Windows offline
image viewers. Although, when discussing security of image viewing
software, web browsers are usually implied, since they will be on the
'front lines' in the unsafe environment such as the Internet, this
research lists several cases in which you may open potentially
dangerous image file with your favorite image viewer. The viewers
tested are: ACDSee, IrfranView and FastStone image viewer (current
versions at the date of testing). The testing involved opening windows
bitmap (.bmp) images specially crafted to cause buffer overflows in
certain cases, if such cases are not handled properly by the opening
application. Unusual results and crashes were noted. The test results
demonstrated multiple vulnerabilities in the viewers tested. A
possible bug in Windows explorer on XP SP1 is also presented.
You can see the complete report at
http://ifsec.blogspot.com/2007/04/several-windows-image-viewers.html