CVE-2017-15769

Name of the Vulnerable Software and Affected Versions IrfanView versions 4.50

Description The issue allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .dds file, related to "Read Access Violation starting at FORMATS!ReadBLP W+0x0000000000001b22."

Recommendations For IrfanView version 4.50, avoid using the software to open crafted .dds files until a patch is available. As a temporary workaround, consider restricting the use of .dds file format support in IrfanView to minimize the risk of exploitation.