CVE-2011-1338 Information

Description

Untrusted search path vulnerability in XnView before 1.98.1 allows local users to gain privileges via a Trojan horse .exe file in a folder selected by the \Open containing folder\ menu item.

Reference

http://jvn.jp/en/jp/JVN17844633/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2011-000050 http://secunia.com/advisories/45127 http://www.osvdb.org/73619 http://www.securityfocus.com/bid/48562 https://exchange.xforce.ibmcloud.com/vulnerabilities/68369