This script is Copyright (C) 2012 Tenable Network Security, Inc.
A graphic viewer on the remote host is affected by a buffer overflow
The remote Windows host contains a version of IrfanView earlier than
4.33. As such, it is reportedly affected by a heap-based buffer
overflow vulnerability due to the way the application handles RLE
compressed bitmap files.
An attacker could trick a user into opening specially crafted DIB,
RLE, or BMP image files using RLE compression, which would result in
arbitrary code execution on the affected host subject to the
privileges of the user running this application.
See also :
Upgrade to IrfanView version 4.33 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false