Heap-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a levels header.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/89806https://www.irfanview.com/history_old.htm
