Buffer Overflow in WinRAR by RARLAB Allows Local Code Execution
CVE-2005-4620

Currently unrated

Key Information:

Vendor: Rarlab
Status: Winrar
Vendor: CVE Published:; 31 December 2005

What is CVE-2005-4620?

A buffer overflow vulnerability exists in WinRAR versions 3.50 and earlier, allowing local users to execute arbitrary code when providing long command-line arguments. Although this vulnerability does not typically cross privilege boundaries due to the nature of command-line executions, local exploits may still pose security concerns for users running affected versions. It is crucial for users to regularly update their software to mitigate potential risks.

References

http://www.securityfocus.com/archive/1/420679/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.rarlab.com/rarnew.htm

x_refsource_MISC

http://www.securityfocus.com/data/vulnerabilities/exploit...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jan 6, 2006
Vulnerability published
Dec 31, 2005

Rarlab

What is CVE-2005-4620?

References

Timeline