Site Network: | | Jongsma & Jongsma

Security for All

Sûnnet Beskerming is a company with a focus and a drive to provide Information Security services for all those who want to stay safe and secure in an online world.

Username: | Password: Contact us to request an account

RAR Processing - Remote hacker automatic denial of service

Version: Multiple Versions
Technical Details:

Denial of Service due to poor handling of RAR archives. Specifically, the applications try to read negative locations from a memory pointer reference that is set when handling RAR archives.

Without the ability to exert fine control over the values being set, remote arbitrary code execution is not possible at this stage.


A number of products that process RAR archives have been found vulnerable to exploitation by remote attackers, leading to application crashes and system control in the worst cases. Products affected include those from Symantec (may not specifically be the same issue as affecting other vendors), ClamAV, Unrar, and others.


Check with your software vendor to see whether a patch is required for your software.


See applicable vendors for updates




External Tracking Data:

Not Yet Identified

Social bookmark this page