Heap-Based Buffer Overflow in UnRAR by RARLab
CVE-2017-20006

7.8HIGH

Key Information:

Vendor

Rarlab

Status
Unrar
Vendor
CVE Published:
1 July 2021

What is CVE-2017-20006?

The UnRAR utility versions 5.6.1.2 and 5.6.1.3 contain a heap-based buffer overflow vulnerability in the Unpack::CopyString function. This issue arises when the function is called from Unpack::Unpack5 and CmdExtract::ExtractCurrentFile, potentially allowing an attacker to exploit memory corruption techniques to execute arbitrary code or crash the application.

References

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/...
x_refsource_MISC
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4373
x_refsource_MISC
https://github.com/aawc/unrar/commit/0ff832d31470471803b1...
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.