Secunia Advisory: SA29407
Release Date: 2008-03-19
Critical: Highly critical
Impact: DoS
System access
Where: From remote
Solution Status: Vendor Patch
Software: WinRAR 3.x
Description:
Some vulnerabilities have been reported in WinRAR, which can potentially be exploited by malicious people to compromise a vulnerable system.
The vulnerabilities are caused due to unspecified errors in the processing of archives and can be exploited to cause heap corruptions and stack-based buffer overflows via specially crafted archives.
Successful exploitation may allow execution of arbitrary code.
The vulnerabilities are reported in versions prior to 3.71.
Solution:
Update to version 3.71.
Bollettino di Sicurezza
Release Date: 2008-03-19
Critical: Highly critical
Impact: DoS
System access
Where: From remote
Solution Status: Vendor Patch
Software: WinRAR 3.x
Description:
Some vulnerabilities have been reported in WinRAR, which can potentially be exploited by malicious people to compromise a vulnerable system.
The vulnerabilities are caused due to unspecified errors in the processing of archives and can be exploited to cause heap corruptions and stack-based buffer overflows via specially crafted archives.
Successful exploitation may allow execution of arbitrary code.
The vulnerabilities are reported in versions prior to 3.71.
Solution:
Update to version 3.71.
Bollettino di Sicurezza