IrfanView DC-2024-11573 (High)

2024-11-22

:

IrfanView, a popular image viewer, is affected by a high-severity vulnerability (CVE-2024-11573) that allows remote attackers to execute arbitrary code on vulnerable installations. The vulnerability stems from improper validation of user-supplied data in the parsing of DXF files, leading to memory corruption. To exploit this vulnerability, a user must interact with a malicious file or visit a malicious website. The issue has been fixed in IrfanView version 4.70 with plugins version 4.70.

Vulnerability Details:

Platform: IrfanView
Version: Affected versions prior to 4.70
Vulnerability: Remote Code Execution
Severity: High
Date: 2024

What Undercode Says:

This vulnerability poses a significant risk to IrfanView users. It’s crucial to update to the latest version (4.70) to mitigate the threat of remote code execution.

Given the high severity of this vulnerability,

It’s also advisable to keep other software up-to-date to address potential vulnerabilities and strengthen overall system security.

References:

Reported By: Zerodayinitiative.com
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top