The host is installed with XnView Classic 2.48 and is prone to an user mode write AV vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause out-of-bounds write.