The vulnerability of the VMSF_DELTA memory component of the UnRAR file decompression tool and the Sophos Anti-Virus antivirus protection allows a perpetrator to execute arbitrary code.

The vulnerability of the VMSFDELTA component, a file decompression tool, and the UnRAR decompression tool is caused by a numerical overflow. This occurs when the variable MemDestPos exceeds its allowable limits due to the negative value of the argument DestPos during the summation of DataSize and...

UBUNTU-CVE-2012-6706

A VMSFDELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine before 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative value of the...