CVE-2008-1461

Name of the Vulnerable Software and Affected Versions XnView version 1.92.1

Description A buffer overflow issue exists, potentially allowing user-assisted remote attackers to execute arbitrary code. This can occur when a long filename argument is provided on the command line. However, it is unclear whether common handler configurations exist where this argument could be controlled by an attacker.

Recommendations For XnView version 1.92.1, consider avoiding the use of long filename arguments on the command line until a fix is available. As a temporary workaround, restrict command line input to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.