libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the EncodeFileName::Decode call within the Archive::ReadHeader15 function.
References
Link | Resource |
---|---|
http://seclists.org/oss-sec/2017/q3/290 | Exploit Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/201709-24 | |
https://kc.mcafee.com/corporate/index?page=content&id=SB10241 |
Configurations
Information
Published : 2017-08-18 07:29
Updated : 2018-06-15 18:29
NVD link : CVE-2017-12940
Mitre link : CVE-2017-12940
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
rarlab
- unrar