CVE-2024-6811: 
IrfanView vulnerability analysis and mitigation

IrfanView WSQ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2024-6811) was discovered affecting IrfanView installations. The vulnerability was disclosed on July 18, 2024, and affects the WSQ file parsing functionality in IrfanView. The issue specifically impacts IrfanView version 4.67 and the WSQ plugin version 2024.02.16 (ZDI Advisory).

The vulnerability stems from a lack of proper validation of user-supplied data when parsing WSQ files, which can result in a write past the end of an allocated buffer. The issue has been assigned a CVSS v3.1 base score of 7.8 (High) with the vector string AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability is classified as CWE-787 (Out-of-bounds Write) (NVD).

A successful exploitation of this vulnerability could allow attackers to execute arbitrary code in the context of the current process. This could potentially lead to complete compromise of the affected system under the privileges of the user running IrfanView (ZDI Advisory).

The vulnerability has been fixed in the WSQ plugin (64-bit) which can be downloaded from the IrfanView plugins page. Users are advised to update their WSQ plugin to the latest version to protect against this vulnerability (ZDI Advisory).