CVE-2005-3262

2005-10-20T10:02:00
ID CVE-2005-3262
Type cve
Reporter cve@mitre.org
Modified 2008-09-10T19:46:00

Description

Format string vulnerability in RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via format string specifiers in a UUE/XXE file, which are not properly handled when WinRAR displays diagnostic errors related to an invalid filename.