The host is installed with IrfanView before 4.37 and is prone to a Stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a specially-crafted SID file. Successful exploitation could allow attackers to execute arbitrary code on the system or cause the application to crash.