CVE-2017-11190CVE-2017-11190

Affected configuration(s):

cpe:/a:rarzilla:unrar-free:0.0.1

Date published: 2017-07-12T12:29:00.360-04:00

Date last modified: 2017-07-21T16:29:31.587-04:00

CVSS Score: 6.8

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: https://github.com/0x09AL/my-exploits/blob/master/pocs/unrar-free/buffer-overflow/DESCRIPTION

Summary: unrarlib.c in unrar-free 0.0.1, when _DEBUG_LOG mode is enabled, might allow remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via an RAR archive containing a long filename.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.