A security vulnerability exists in Bentley View, a free viewer from Bentley Systems, U.S.A. The Bentley View BMP file parsing vulnerability is due to a failure to properly validate the length of user-supplied data before copying it to a heap buffer. An attacker could exploit this vulnerability to execute code in the context of the current process.