25% of computers have vulnerable IrfanView installed

Stefan Cornelius of Secunia Research has discovered a vulnerability in the Irfanview image viewer software. The vulnerability is easily exploitable, as it only requires that a user is tricked into opening a specially crafted palette (.PAL) file. If you receive an email or view a website where you are asked to view a malicious .PAL file, please take caution and make sure that you trust the source. Otherwise, you may be allowing a malicious attacker to install and run arbitrary programs on your system, including malware, spyware, information stealers, keyloggers, and so on.
25% of computers have vulnerable IrfanView installed