WinRAR LHA Filename Handling Buffer Overflows
High Nessus Plugin ID 22072
SynopsisThe remote Windows host has an application that is suffers from two buffer overflow vulnerabilities.
DescriptionThe remote host is running WinRAR, an archive manager for Windows.
The version of WinRAR installed on the remote host is affected by two stack-based buffer overflows when processing LHA files with specially- crafted filenames. Successful exploitation of either issue enables an attacker to execute arbitrary code subject to the privileges of the current user.
SolutionUpgrade to WinRAR version 3.6.0 beta 7 (184.108.40.206) or later.