CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
94.9%
Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames.
Vendor | Product | Version | CPE |
---|---|---|---|
arj_software_inc. | unarj | 2.62 | cpe:2.3:a:arj_software_inc.:unarj:2.62:*:*:*:*:*:*:* |
arj_software_inc. | unarj | 2.63_a | cpe:2.3:a:arj_software_inc.:unarj:2.63_a:*:*:*:*:*:*:* |
arj_software_inc. | unarj | 2.64 | cpe:2.3:a:arj_software_inc.:unarj:2.64:*:*:*:*:*:*:* |
arj_software_inc. | unarj | 2.65 | cpe:2.3:a:arj_software_inc.:unarj:2.65:*:*:*:*:*:*:* |
gentoo | linux | * | cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:* |
suse | suse_linux | 9.0 | cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:* |
suse | suse_linux | 9.1 | cpe:2.3:o:suse:suse_linux:9.1:*:*:*:*:*:*:* |
suse | suse_linux | 9.2 | cpe:2.3:o:suse:suse_linux:9.2:*:*:*:*:*:*:* |