CVE-2006-3845

High

9.3/10

Summary

Stack-based buffer overflow in lzh.fmt in WinRAR 3.00 through 3.60 beta 6 allows remote attackers to execute arbitrary code via a long filename in a LHA archive.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Jul 25, 2006

CVE-2006-3845

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS