|
Family: Windows --> Category: infos
WinRAR LHA Filename Handling Buffer Overflow Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Check the version of WinRAR
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows host has an application that is suffers from two
buffer overflow vulnerabilities.
Description :
The remote host is running WinRAR, an archive manager for Windows.
The version of WinRAR installed on the remote host is affected by two
stack-based buffer overflows when processing LHA files with specially-
crafted filenames. Successful exploitation of either issue enables an
attacker to execute arbitrary code subject to the rights of the
current user.
See also :
http://www.hustlelabs.com/advisories/04072006_rarlabs.pdf
http://www.rarlab.com/rarnew.htm
Solution :
Upgrade to WinRAR version 3.6.0 beta 7 (3.60.7.0) or later.
Threat Level:
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|