XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mkv file that is mishandled during the opening of a directory in βBrowserβ mode, because of a βUser Mode Write AV near NULLβ in XnView.exe.