CVE-2019-9969

Name of the Vulnerable Software and Affected Versions XnView Classic version 2.48

Description The issue allows remote attackers to cause a denial of service, potentially leading to an application crash, or possibly have other unspecified impacts via a crafted file. This is related to the xnview+0x385399 function.

Recommendations For XnView Classic version 2.48, consider avoiding the use of crafted files that may trigger the denial of service until a patch is available. As a temporary workaround, restricting access to potentially malicious files may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.