CVE-2018-11705

Name of the Vulnerable Software and Affected Versions FastStone Image Viewer version 6.2

Description The issue occurs when a malformed JPEG file is opened, causing a User Mode Write AV at memory address 0x00578cc4 due to mishandling by FSViewer.exe. This could potentially be exploited for a Denial of Service (DoS) through an Access Violation, or possibly other unspecified impacts.

Recommendations For FastStone Image Viewer version 6.2, consider avoiding the use of FSViewer.exe to open JPEG files from untrusted sources until a fix is available. As a temporary workaround, restrict the handling of JPEG files by FSViewer.exe to minimize the risk of exploitation.