Family: Windows --> Category: infos
WinRAR LHA Filename Handling Buffer Overflow Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Check the version of WinRAR
Detailed Explanation for this Vulnerability Test
The remote Windows host has an application that is suffers from two
buffer overflow vulnerabilities.
The remote host is running WinRAR, an archive manager for Windows.
The version of WinRAR installed on the remote host is affected by two
stack-based buffer overflows when processing LHA files with specially-
crafted filenames. Successful exploitation of either issue enables an
attacker to execute arbitrary code subject to the rights of the
See also :
Upgrade to WinRAR version 3.6.0 beta 7 (18.104.22.168) or later.
High / CVSS Base Score : 8
Click HERE for more information and discussions on this network vulnerability scan.