Vulnerability Details CVE-2004-1495
The Repair Archive command in WinRAR 3.40 allows remote attackers to cause a denial of service (application crash) via a corrupt ZIP archive.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.8%
CVSS Severity
CVSS v2 Score 2.6
References
- http://marc.info/?l=bugtraq&m=109941351432699&w=2
- http://secunia.com/advisories/13070
- http://www.rarlabs.com/rarnew.htm
- http://www.securityfocus.com/bid/11581
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17937
- http://marc.info/?l=bugtraq&m=109941351432699&w=2
- http://secunia.com/advisories/13070
- http://www.rarlabs.com/rarnew.htm
- http://www.securityfocus.com/bid/11581
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17937
Products affected by CVE-2004-1495
-
cpe:2.3:a:rarlab:winrar:2.90
-
cpe:2.3:a:rarlab:winrar:3.0.0
-
cpe:2.3:a:rarlab:winrar:3.10
-
cpe:2.3:a:rarlab:winrar:3.10_beta3
-
cpe:2.3:a:rarlab:winrar:3.10_beta5
-
cpe:2.3:a:rarlab:winrar:3.11
-
cpe:2.3:a:rarlab:winrar:3.20
-
cpe:2.3:a:rarlab:winrar:3.40