CVE-2007-3726 in unrarinfo

Summary

Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

07/11/2007

Disclosure

07/12/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-404 (Confirmed)

CVSS

5.3

EPSS

0.00992

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-3726
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3726
CVE Details	https://www.cvedetails.com/cve/CVE-2007-3726/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!