Buffer overflow on .cnt / .hpj files parsing.
vulners.com/securityvulns/securityvulns:doc:15750
vulners.com/securityvulns/securityvulns:doc:15759