CVE-2020-23567

Name of the Vulnerable Software and Affected Versions Irfanview version 4.53

Description The issue allows attackers to cause a denial of service (DoS) via a crafted JPEG 2000 file. It is related to an "Integer Divide By Zero" error starting at JPEG2000!ShowPlugInSaveOptions W+0x00000000000082ea.

Recommendations For Irfanview version 4.53, consider avoiding the use of JPEG 2000 files until a patch is available. As a temporary workaround, restrict the handling of crafted JPEG 2000 files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.