header-logo
Suggest Exploit
vendor:
WinRAR
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: WinRAR
Affected Version From: 3.3
Affected Version To: 3.3
Patch Exists: Yes
Related CWE: N/A
CPE: winrar
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2002

WinRAR Long File Extension Vulnerability

A vulnerability has been discovered in WinRAR. The problem occurs when the affected application opens an archive containing a file with an overly long file extension. It has been reported that it is possible for an attacker to exploit this issue to run arbitrary instructions. Commands executed in this manner would be run with the privileges of the vulnerable program.

Mitigation:

Upgrade to the latest version of WinRAR
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/6664/info

A vulnerability has been discovered in WinRAR. The problem occurs when the affected application opens an archive containing a file with an overly long file extension. 

It has been reported that it is possible for an attacker to exploit this issue to run arbitrary instructions. Commands executed in this manner would be run with the privileges of the vulnerable program.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/22193.zip

Navigation

Suggest Exploit

Services By CQR