CVE-2005-4620 - Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long c

CVE-2005-4620

Summary

Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specify a command-line argument for this program, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.

References

Vulnerable Configurations

cpe:2.3:a:rarlab:winrar:2.90:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:2.90:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.10:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.10:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.10_beta3:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.10_beta3:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.10_beta5:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.10_beta5:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.11:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.11:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.30:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.30:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.40:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.40:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.41:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.41:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.42:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.42:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.50:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.50:*:*:*:*:*:*:*

CVSS

Base:	4.6 (as of 19-10-2018 - 15:41)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	15123
bugtraq	20060103 Winrar 3.30 Local Buffer Overflow
misc	http://www.rarlab.com/rarnew.htm http://www.securityfocus.com/data/vulnerabilities/exploits/0xletzdance.c

Last major update

19-10-2018 - 15:41

Published

31-12-2005 - 05:00

Last modified

19-10-2018 - 15:41