Winrar@2.90 Security Vulnerabilities and Issues — Winrar@2.90 CVE List

Lucene search

RarlabWinrar2.90

3 matches found

CVE•added 2005/10/20 10:2 a.m.•40 views

CVE-2005-3263

Stack-based buffer overflow in UNACEV2.DLL for RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via an ACE archive containing a file with a long name.

7.5CVSS8.5AI score0.05421EPSS

CVE•added 2005/10/20 10:2 a.m.•39 views

CVE-2005-3262

Format string vulnerability in RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via format string specifiers in a UUE/XXE file, which are not properly handled when WinRAR displays diagnostic errors related to an invalid filename.

7.5CVSS8.1AI score0.09615EPSS

CVE•added 2005/02/19 5:0 a.m.•38 views

CVE-2004-1495

The Repair Archive command in WinRAR 3.40 allows remote attackers to cause a denial of service (application crash) via a corrupt ZIP archive.

2.6CVSS7.1AI score0.00911EPSS