!Irfan view Security update

Discussion in 'NZ Computing' started by Max Burke, Oct 19, 2007.

  1. Max Burke

    Max Burke Guest

    Secunia Research disclosed a vulnerability this week in Irfanview, the
    popular Windows image viewer software. The vulnerability is due to a
    boundary error when importing palette (.PAL) files, and can cause a
    stack-based buffer overflow.

    The vulnerability can easily be exploited by enticing a user into
    importing a specially crafted .PAL file, and allows an attacker to
    execute arbitrary code on the system.

    Users are urged to upgrade to the latest version, 4.10, to solve this
    vulnerability. For more information, refer to:
    http://secunia.com/advisories/26619/
     
    Max Burke, Oct 19, 2007
    #1
    1. Advertisements

  2. pssst, hey you ... yes you, over here, here, import this .PAL file into
    your irfanview, why? oh, no reason, just give it a try, you know you
    want to....
     
    dilberts_left_nut, Oct 19, 2007
    #2
    1. Advertisements

  3. Max Burke

    -=rjh=- Guest

    My thoughts exactly.

    However, there are other good reasons for upgrading, 4.10 adds some
    functionality previously missing - like some simple painting tools, and
    the ability to straighten horizons for example.
     
    -=rjh=-, Oct 19, 2007
    #3
  4. Max Burke

    Gordon Guest

    Oh dear, Ifran has just stepped beyond what he has done so well for so many
    years. An image viewer.
     
    Gordon, Oct 20, 2007
    #4
  5. Irfanview has had image editing and manipulation functions for years
     
    Mark Robinson, Oct 20, 2007
    #5
  6. Max Burke

    Ross Guest

    You have been able to add text and alter with various "effects" for
    years. And it plays multimedia files (or is that only with the
    plugins?)
     
    Ross, Oct 20, 2007
    #6
  7. Max Burke

    -=rjh=- Guest

    Not really, all the extra functionality is in the form of plugins, which
    you don't have to use if you don't like.

    Anyway, although Irfanview makes a great image viewer, I've always found
    its real strengths are more related to generating slideshows, batch
    processing heaps of files and quickly fixing (cropping, resizing, colour
    correcting and sharpening) digital photos.
     
    -=rjh=-, Oct 22, 2007
    #7
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.