A stack-based buffer overflow in IrfanView (MrSID plug-in MrSID.dll) allows an attacker to execute arbitrary code via an specially crafted a .SID file. This module runs a malicious web server on the Core Impact Console and waits for an unsuspecting user to trigger the exploit by connecting to it.
CVE Link
Exploit Platform
Exploit Type
Product Name