CVE-2017-9907

Name of the Vulnerable Software and Affected Versions XnView Classic for Windows version 2.40

Description The issue allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to a possible stack corruption.

Recommendations For version 2.40, consider avoiding the use of .fpx files until a patch is available. As a temporary workaround, restrict the processing of .fpx files to minimize the risk of exploitation.