Stack-based buffer overflow in UNACEV2.DLL for RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via an ACE archive containing a file with a long name.
http://www.securityfocus.com/bid/15062
http://www.rarlabs.com/rarnew.htm
http://secunia.com/secunia_research/2005-53/advisory/
http://secunia.com/advisories/16973/
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0266.html