CVE Vulnerabilities

CVE-2005-4620

Published: Dec 31, 2005 | Modified: Oct 19, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specify a command-line argument for this program, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.

Affected Software

Name Vendor Start Version End Version
Winrar Rarlab 2.90 (including) 2.90 (including)
Winrar Rarlab 3.0.0 (including) 3.0.0 (including)
Winrar Rarlab 3.10 (including) 3.10 (including)
Winrar Rarlab 3.10_beta3 (including) 3.10_beta3 (including)
Winrar Rarlab 3.10_beta5 (including) 3.10_beta5 (including)
Winrar Rarlab 3.11 (including) 3.11 (including)
Winrar Rarlab 3.20 (including) 3.20 (including)
Winrar Rarlab 3.30 (including) 3.30 (including)
Winrar Rarlab 3.40 (including) 3.40 (including)
Winrar Rarlab 3.41 (including) 3.41 (including)
Winrar Rarlab 3.42 (including) 3.42 (including)
Winrar Rarlab 3.50 (including) 3.50 (including)

References