Stack-based Buffer Overflow in RARLabs Unrar Affecting WinRAR and Other Products
CVE-2007-0855

Currently unrated

Key Information:

Vendor: Rarlab
Status: Unrar
Vendor: CVE Published:; 8 February 2007

Summary

RARLabs Unrar, used in WinRAR and potentially other products, is susceptible to a stack-based buffer overflow. This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening a maliciously crafted, password-protected archive. Successful exploitation requires user interaction, making it critical for users to be cautious with untrusted archives.

References

http://osvdb.org/33124

vdb-entryx_refsource_OSVDB

http://www.novell.com/linux/security/advisories/2007_5_sr...

vendor-advisoryx_refsource_SUSE

http://www.securityfocus.com/bid/22447

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Feb 8, 2007
Vulnerability Reserved
Feb 8, 2007