-= Unl0ck Team Security Advisory =-

2004-12-2100:00:00

vulners.com

                    -= Unl0ck Team Security Advisory =-

    ____ ___       __  _______           __      ___________
   |    |   &#92;____ |  | &#92;   _  &#92;    ____ |  | __  &#92;__    ___/___ _____    _____
   |    |   /    &#92;|  | /  /_&#92;  &#92;_ / ___&#92;|  |/ /    |    |_/ __ &#92;&#92;__  &#92;  /     &#92;
   |    |  /   |  &#92;  |_&#92;  &#92;_/   &#92;  &#92;___ |    &lt;     |    |&#92;  ___/ / __ &#92;|  Y Y  &#92;
   |______/|___|  /____/&#92;_____  /&#92;_____ &gt;__|_ &#92;    |____| &#92;___  &gt;____  /__|_|  /
                &#92;/            &#92;/       &#92;/    &#92;/               &#92;/     &#92;/      &#92;/
                     ... the best way of protection is attack

                              http://unl0ck.void.ru

Advisory : #10 by unl0ck team
Product : WinRAR <= 3.41
Vendor : http://rarlabs.com
Date : 19.12.2004
Impact : buffer overflow
Advisory URL : http://unl0ck.void.ru/papers/adv/vpopmail2.txt

-=[ Overview

WinRAR best compressor/decompressor all over the World!

]=-

-=[ Vulnerability

Buffer Overflow vulnerability exist in delete() function in WinRAR.
We released some demo exploit. You Can see it in our site in "Exploits" Section.
DemoExploit create archive with long filename. Try to open archive, then try to delete file onto archive.

]=-

-=[ Credits

Found this bug Dark Eagle

Unl0ck Team [http://unl0ck.void.ru]

]=-

JSON