Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rarlab vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2005-3263
Stack-based buffer overflow in UNACEV2.DLL for RARLAB WinRAR 2.90 up to and including 3.50 allows remote malicious users to execute arbitrary code via an ACE archive containing a file with a long name.
Rarlab Winrar 3.11
Rarlab Winrar 3.20
Rarlab Winrar 3.40
Rarlab Winrar 3.41
Rarlab Winrar 3.0.0
Rarlab Winrar 3.10 Beta3
Rarlab Winrar 3.50
Rarlab Winrar 2.90
Rarlab Winrar 3.10
Rarlab Winrar 3.10 Beta5
Rarlab Winrar 3.42
605
VMScore
CVE-2017-20006
UnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack::CopyString (called from Unpack::Unpack5 and CmdExtract::ExtractCurrentFile).
Rarlab Unrar 5.6.1.2
Rarlab Unrar 5.6.1.3
605
VMScore
CVE-2018-25018
UnRAR 5.6.1.7 up to and including 5.7.4 and 6.0.3 has an out-of-bounds write during a memcpy in QuickOpen::ReadRaw when called from QuickOpen::ReadNext.
Rarlab Unrar
Rarlab Unrar 6.0.3
605
VMScore
CVE-2018-20253
In WinRAR versions prior to and including 5.60, There is an out-of-bounds write vulnerability during parsing of a crafted LHA / LZH archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Rarlab Winrar
1 Github repository
605
VMScore
CVE-2018-20252
In WinRAR versions prior to and including 5.60, there is an out-of-bounds write vulnerability during parsing of crafted ACE and RAR archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.
Rarlab Winrar
1 Github repository
605
VMScore
CVE-2007-0855
Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR and possibly other products, allows user-assisted remote malicious users to execute arbitrary code via a crafted, password-protected archive.
Rarlab Unrar 3.60
Rarlab Unrar 3.61
581
VMScore
CVE-2022-30333
RARLAB UnRAR prior to 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.
Rarlab Unrar
2 Metasploit modules
4 Github repositories
1 Article
570
VMScore
CVE-2017-14122
unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a stack-based buffer over-read in unrarlib.c, related to ExtrFile and stricomp.
Rarlab Unrar 0.0.1
Debian Debian Linux 9.0
570
VMScore
CVE-2004-0235
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
Clearswift Mailsweeper 4.3.13
Clearswift Mailsweeper 4.3.3
Clearswift Mailsweeper 4.3.4
F-secure F-secure Anti-virus 2004
F-secure F-secure Anti-virus 4.51
F-secure F-secure Anti-virus 5.41
F-secure F-secure For Firewalls 6.20
F-secure F-secure Internet Security 2003
Rarlab Winrar 3.20
Redhat Lha 1.14i-9
Winzip Winzip 9.0
Clearswift Mailsweeper 4.0
Clearswift Mailsweeper 4.1
Clearswift Mailsweeper 4.3.5
Clearswift Mailsweeper 4.3.6
F-secure F-secure Anti-virus 5.42
F-secure F-secure Internet Security 2004
F-secure F-secure Personal Express 4.5
Sgi Propack 2.4
Sgi Propack 3.0
Clearswift Mailsweeper 4.2
Clearswift Mailsweeper 4.3
470
VMScore
CVE-2005-4620
Buffer overflow in WinRAR 3.50 and previous versions allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specif...
Rarlab Winrar 3.0.0
Rarlab Winrar 3.10
Rarlab Winrar 3.41
Rarlab Winrar 3.42
Rarlab Winrar 3.11
Rarlab Winrar 3.20
Rarlab Winrar 2.90
Rarlab Winrar 3.30
Rarlab Winrar 3.40
Rarlab Winrar 3.10 Beta3
Rarlab Winrar 3.10 Beta5
Rarlab Winrar 3.50
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »