CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
95.9%
Stack-based buffer overflow in lzh.fmt in WinRAR 3.00 through 3.60 beta 6 allows remote attackers to execute arbitrary code via a long filename in a LHA archive.
Vendor | Product | Version | CPE |
---|---|---|---|
rarlab | winrar | 3.0.0 | cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:* |
rarlab | winrar | 3.10 | cpe:2.3:a:rarlab:winrar:3.10:*:*:*:*:*:*:* |
rarlab | winrar | 3.10_beta3 | cpe:2.3:a:rarlab:winrar:3.10_beta3:*:*:*:*:*:*:* |
rarlab | winrar | 3.10_beta5 | cpe:2.3:a:rarlab:winrar:3.10_beta5:*:*:*:*:*:*:* |
rarlab | winrar | 3.11 | cpe:2.3:a:rarlab:winrar:3.11:*:*:*:*:*:*:* |
rarlab | winrar | 3.20 | cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:* |
rarlab | winrar | 3.30 | cpe:2.3:a:rarlab:winrar:3.30:*:*:*:*:*:*:* |
rarlab | winrar | 3.40 | cpe:2.3:a:rarlab:winrar:3.40:*:*:*:*:*:*:* |
rarlab | winrar | 3.41 | cpe:2.3:a:rarlab:winrar:3.41:*:*:*:*:*:*:* |
rarlab | winrar | 3.42 | cpe:2.3:a:rarlab:winrar:3.42:*:*:*:*:*:*:* |