CVE-2024-11520: 
IrfanView vulnerability analysis and mitigation

CVE-2024-11520 is a remote code execution vulnerability in IrfanView affecting version 4.67 (x64 and x86). The vulnerability was discovered and disclosed on November 22, 2024. This security flaw exists within the parsing of ARW files in IrfanView, allowing remote attackers to execute arbitrary code on affected installations (ZDI Advisory).

The vulnerability stems from the lack of proper validation of user-supplied data during ARW file parsing, which can result in a write past the end of an allocated object. The issue has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability is classified as CWE-787 (Out-of-bounds Write) (NVD).

A successful exploitation of this vulnerability allows attackers to execute arbitrary code in the context of the current process. This could potentially lead to complete system compromise at the privilege level of the affected application (ZDI Advisory).

The vulnerability has been fixed in IrfanView version 4.70 with plugins version 4.70. Users are advised to upgrade to this version to protect against potential exploitation (ZDI Advisory).