CVE-2013-6932

Name of the Vulnerable Software and Affected Versions IrfanView versions prior to 4.37

Description The issue arises from a buffer overflow when IrfanView handles a crafted file with a multibyte-character directory name in the Thumbnails window, specifically through the Thumbnail tooltips feature. This can lead to the execution of arbitrary code by user-assisted remote attackers.

Recommendations For versions prior to 4.37, update to version 4.37 or later to resolve the issue. As a temporary workaround, consider avoiding the use of multibyte-character directory names in the Thumbnails window until the update is applied.