The host is installed with XnView 1.98.5 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. Successful exploitation could allow attackers to execute arbitrary code.