7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.025 Low
EPSS
Percentile
89.8%
04/08/2015
Critical
Buffer overflow, improper strings restriction and other unknown vulnerabilities were found in Open-source ARJ archiver. By exploiting these vulnerabilities malicious users can cause denial of service, execute arbitrary code or write to arbitrary local files. These vulnerabilities can be exploited remotely via a specially designed ARJ archive.
Open-source ARJ archiver 3.10.22
If you want to stay safe you can choose another archiver. Author does not update product for 10 years.
ACE
CVE-2015-05565.8High
CVE-2015-05575.8High
CVE-2015-27827.5Critical