WinRAR LHA Archive Processing Buffer Overflow

Affected Software: WinRAR 3.x

Ryan Smith has reported a vulnerability in WinRAR, which can be exploited by malicious people to compromise a user’s system.

The vulnerability is caused due to boundary errors in lzh.fmt within the processing of LHA archives. This can be exploited to cause a stack-based buffer overflow when a specially crafted file with an overly long filename is opened.

Successful exploitation allows execution of arbitrary code with the user’s privileges.

The vulnerability has been reported in versions 3.00 through 3.60 beta 6.

Solution: The vulnerability has been fixed in version 3.60 beta 7.

Leave a Reply