CVE-2012-0282

Name of the Vulnerable Software and Affected Versions XnView versions prior to 1.99

Description The issue is related to a heap-based buffer overflow that can be triggered by a crafted ImageLeftPosition value in an ImageDescriptor structure in a GIF image. This can cause a denial of service, leading to an application crash, and potentially allow the execution of arbitrary code.

Recommendations For versions prior to 1.99, update to version 1.99 or later to resolve the issue. As a temporary workaround, consider avoiding the use of GIF images with crafted ImageLeftPosition values in the ImageDescriptor structure until the update is applied.