WinRAR Delete Archived File Overflow

2004-12-22T06:40:29
ID OSVDB:12550
Type osvdb
Reporter Miguel Tarasco Acuna(tarako@gmail.com)
Modified 2004-12-22T06:40:29

Description

Vulnerability Description

A local overflow exists in WinRar. WinRar fails to properly validate data resulting in a buffer overflow. When a user deletes a specific file from a specially crafted zip file, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

Solution Description

The vendor is aware of the vulnerability and has opted not to release a patch until the next scheduled release of the product.

Short Description

A local overflow exists in WinRar. WinRar fails to properly validate data resulting in a buffer overflow. When a user deletes a specific file from a specially crafted zip file, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

References:

Secunia Advisory ID:13591 Other Advisory URL: http://www.securiteam.com/windowsntfocus/6B00J1PC1Y.html ISS X-Force ID: 18569 Generic Exploit URL: http://www.k-otik.com/exploits/20041217.Winrar.c.php CVE-2004-1254 Bugtraq ID: 12002