Secunia Research has discovered a vulnerability in IrfanView, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused by a boundary error when processing certain RLE compressed PSD images and can be exploited to cause a heap-based buffer overflow by tricking a user into opening a specially crafted PSD file. Successful exploitation may allow execution of arbitrary code. Version 4.25 is affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/89500/secunia-irfanpsdrle.txt
Source: https://packetstormsecurity.com/files/89500/IrfanView-PSD-RLE-Decompression-Buffer-Overflow.html