CVE-2010-1509

CVE-2010-1509 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

IrfanView before 4.27 does not properly handle an unspecified integer variable during processing of PSD images, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow, related to a "sign-extension error."

Learn more about our Web Application Penetration Testing UK.