CVE-2008-0069

Name of the Vulnerable Software and Affected Versions XnView versions 1.92 through 1.92.1

Description A stack-based buffer overflow issue allows user-assisted remote attackers to execute arbitrary code via a long FontName parameter in a slideshow (.sld) file.

Recommendations For versions 1.92 and 1.92.1, avoid using long FontName parameters in slideshow files until a fix is available. As a temporary workaround, consider restricting the use of slideshow files with potentially long FontName parameters to minimize the risk of exploitation.