Intrusion Prevention

IrfanView.IFF.Format.Handling.Buffer.Overflow

Description

This indidates a possible attempt to exploit a buffer overflow vulnerability in IrfanView.
A remote attacker could execute arbitrary code on a victim system via a specially-crafted ".IFF" image file, if the attacker can persuade the victim to open a malicious file.

Affected Products

IrfanView PlugIns version 4.00 and prior.

Impact

System compromise: remote code execution.

Recommended Actions

Upgrade to IrfanView Formats PlugIn version 4.01 :
http://www.irfanview.net/plugins/formats_401.zip

CVE References

CVE-2007-2363