The host is installed with IrfanView FlashPix PlugIn before 4.3.4.0 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted FlashPix image during decompression. Successful exploitation could allow attackers to execute arbitrary code.