Vulnerability in IrfanView
Monday, 22. October 2007, 13:14:05
This vulnelability is IrfanView Palette File Importing Buffer Overflow.
According to Secunia "Watch dog blog",
......, based on more than 120,000 scans, about 25% of all users have Irfanview installed. Of these, over 16,000 (or 13%) have the vulnerable Irfanview 4.00 version installed, and almost 15,000 (or 12%) have the vulnerable Irfanview 3.x version installed.
................
................
........., the fact remains that about 1 in 4 computers are susceptible to attacks exploiting this vulnerability!It's common to forget or dismiss image viewing software because you only mainly use it to view the picture, as compared to complex image-editing software such as Photoshop or CorelDraw. But because image viewing software are such integral components of our computing experience, they present a great way for malicious hackers to try to get into our systems.
For vulnerability of IrfanView, refer to the link below:
http://secunia.com/advisories/26619/
Solution :
Update to version 4.10.
http://www.irfanview.com/main_download_engl.htm
WIDGETIZE