CVE-2017-8785

Name of the Vulnerable Software and Affected Versions FastStone Image Viewer version 6.2

Description The issue is related to a "Data from Faulting Address may be used as a return value" problem. It can be triggered by a malformed JPEG 2000 file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.

Recommendations For FastStone Image Viewer version 6.2, consider avoiding the use of malformed JPEG 2000 files to minimize the risk of exploitation. As a temporary workaround, restrict the handling of JPEG 2000 files by FSViewer.exe until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.