Lucene search
K

12 matches found

CNVD
CNVD
added 2017/09/04 12:0 a.m.6 views

unrar buffer overflow vulnerability

unrar also known as unrar-free or unrar-gpl is a decompression software used in Linux. A buffer overflow vulnerability exists in the unrarlib.c file in unrar version 0.0.1. A remote attacker could exploit this vulnerability to cause a denial of service or execute arbitrary code...

9.1CVSS9.3AI score0.01798EPSS
Exploits0References1
OSV
OSV
added 2017/09/03 8:29 p.m.3 views

DEBIAN-CVE-2017-14122

unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp...

9.1CVSS9.2AI score0.01798EPSS
Exploits0References1
NVD
NVD
added 2017/09/03 8:29 p.m.18 views

CVE-2017-14122

unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp...

9.1CVSS9.3AI score0.01798EPSS
Exploits0References3
Prion
Prion
added 2017/09/03 8:29 p.m.16 views

Stack overflow

unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp...

6.4CVSS9.1AI score0.01798EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2017/09/03 8:29 p.m.26 views

CVE-2017-14122

unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp...

9.1CVSS7.3AI score0.01798EPSS
Exploits0References3
OSV
OSV
added 2017/09/03 8:29 p.m.4 views

DEBIAN-CVE-2017-14121

The DecodeNumber function in unrarlib.c in unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a NULL pointer dereference flaw triggered by a crafted RAR archive. NOTE: this may be the same as one of the several test cases in the CVE-2017-11189 references...

5.5CVSS6.8AI score0.01118EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/09/03 8:0 p.m.21 views

CVE-2017-14121

The DecodeNumber function in unrarlib.c in unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a NULL pointer dereference flaw triggered by a crafted RAR archive. NOTE: this may be the same as one of the several test cases in the CVE-2017-11189 references...

6.3AI score0.01118EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2017/09/03 8:0 p.m.23 views

CVE-2017-14121

The DecodeNumber function in unrarlib.c in unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a NULL pointer dereference flaw triggered by a crafted RAR archive. NOTE: this may be the same as one of the several test cases in the CVE-2017-11189 references...

5.5CVSS5.5AI score0.01118EPSS
Exploits0
CVE
CVE
added 2017/09/03 8:0 p.m.72 views

CVE-2017-14122

The CVE-2017-14122 issue affects unrar-free (unrar 0.0.1). It is a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp. Debian and OSV/NVD records confirm the vulnerability and provide a fixed package version (Debian 1:0.0.1+cvs20140707-1+deb9u1). Impact details from CVSS...

9.1CVSS9.1AI score0.01798EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2017/09/03 8:0 p.m.20 views

CVE-2017-14122

unrar 0.0.1 aka unrar-free or unrar-gpl suffers from a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp...

9.1CVSS9.3AI score0.01798EPSS
Exploits0
CNVD
CNVD
added 2017/07/13 12:0 a.m.5 views

unrar-free 'unrarlib.c' denial of service vulnerability (CNVD-2017-23304)

unrar-free is a decompression program used in Linux. A security vulnerability exists in the unrarlib.c file in unrar-free version 0.0.1. A remote attacker can exploit this vulnerability to cause a denial of service heap buffer overflow and application crash via a RAR archive file containing a lon...

7.8CVSS7.6AI score0.01019EPSS
Exploits0References1
Prion
Prion
added 2017/07/12 4:29 p.m.15 views

Stack overflow

unrarlib.c in unrar-free 0.0.1, when DEBUGLOG mode is enabled, might allow remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact via an RAR archive containing a long filename...

6.8CVSS8.3AI score0.01019EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder