CVE-2024-44913

Name of the Vulnerable Software and Affected Versions Irfanview version 4.67.1.0

Description An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview allows attackers to cause an access violation via a crafted EXR file. This can lead to a Denial of Service (DoS).

Recommendations For Irfanview version 4.67.1.0, consider avoiding the use of crafted EXR files until a patch is available. As a temporary workaround, restrict the handling of EXR files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.