CVE-2005-4474Improper Restriction of Operations within the Bounds of a Memory Buffer in Winrar

3 documents3 sources
Severity
5.1MEDIUMNVD
EPSS
0.7%
top 27.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Rarlab Winrar
Timeline
PublishedDec 22
Latest updateMay 1

Description

Buffer overflow in the "Add to archive" command in WinRAR 3.51 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code by tricking the user into adding a file whose filename contains a non-default code page and non-ANSI characters, as demonstrated using a Chinese filename, possibly due to buffer expansion when using the WideCharToMultiByte API. NOTE: it is not clear whether this problem can be exploited for code execution. If not, then perhaps the

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

NVDrarlab/winrar3.51

🔴Vulnerability Details

2
GHSA
GHSA-4482-cr2p-675v: Buffer overflow in the "Add to archive" command in WinRAR 32022-05-01
CVEList
CVE-2005-4474: Buffer overflow in the "Add to archive" command in WinRAR 32005-12-22
CVE-2005-4474 — Rarlab Winrar vulnerability | cvebase