CVE-2012-1052

Name of the Vulnerable Software and Affected Versions IvanView version 1.2.15

Description The issue allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. This is due to a buffer overflow in the handling of JP2 files.

Recommendations For IvanView version 1.2.15, consider avoiding the use of JPEG2000 (JP2) files until a patch is available. As a temporary workaround, restrict the opening of JP2 files to minimize the risk of exploitation.