Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-3845Improper Restriction of Operations within the Bounds of a Memory Buffer in Winrar

4 documents4 sources
Severity
9.3CRITICALNVD
EPSS
5.6%
top 9.69%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Rarlab Winrar
Timeline
PublishedJul 25
Latest updateMay 1

Description

Stack-based buffer overflow in lzh.fmt in WinRAR 3.00 through 3.60 beta 6 allows remote attackers to execute arbitrary code via a long filename in a LHA archive.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDrarlab/winrar18 versions+17

Patches

Patch: secunia.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-3whr-c946-j943: Stack-based buffer overflow in lzh2022-05-01
CVEList
CVE-2006-3845: Stack-based buffer overflow in lzh2006-07-25

💥Exploits & PoCs

1
Exploit-DB
RARLAB WinRAR 3.x - LHA Filename Handling Buffer Overflow2006-07-18
CVE-2006-3845 — Rarlab Winrar vulnerability | cvebase