Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2009-04-09	CVE-2009-0197	Numeric Errors vulnerability in Irfanview Formats 4.00/4.10/4.20 Integer overflow in the FORMATS Plugin before 4.23 for IrfanView allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large XPM file that triggers a heap-based buffer overflow. network irfanview CWE-189 critical	9.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.