Buffer Overflow in WinRAR by RARLAB Allows Local Code Execution
CVE-2005-4620

Currently unrated

Key Information:

Vendor
Rarlab
Status
Winrar
Vendor
CVE Published:
31 December 2005

Summary

A buffer overflow vulnerability exists in WinRAR versions 3.50 and earlier, allowing local users to execute arbitrary code when providing long command-line arguments. Although this vulnerability does not typically cross privilege boundaries due to the nature of command-line executions, local exploits may still pose security concerns for users running affected versions. It is crucial for users to regularly update their software to mitigate potential risks.

References

http://www.securityfocus.com/archive/1/420679/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.rarlab.com/rarnew.htm
x_refsource_MISC
http://www.securityfocus.com/data/vulnerabilities/exploit...
x_refsource_MISC

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.
CVE-2005-4620 : Buffer Overflow in WinRAR by RARLAB Allows Local Code Execution | SecurityVulnerability.io