RSS   Vulnerabilities for 'Unrar-free'   RSS

2017-07-12
 
CVE-2017-11190

 

 
unrarlib.c in unrar-free 0.0.1, when _DEBUG_LOG mode is enabled, might allow remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via an RAR archive containing a long filename.

 
 
CVE-2017-11189

 

 
unrarlib.c in unrar-free 0.0.1 might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash), which could be relevant if unrarlib is used as library code for a long-running application.

 


Copyright 2024, cxsecurity.com

 

Back to Top