WinRAR 3.x - Advisories by Product - Secunia Advisories - Vulnerability Information

This vulnerability report for WinRAR 3.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in WinRAR 3.x then you are more than welcome to contact us.

Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)

2.1. Statistics for 2009

2.2. Statistics for 2008

2.3. Statistics for 2007

2.4. Statistics for 2006

2.5. Statistics for 2005

2.6. Statistics for 2004

2.7. Statistics for 2003

3. List of Secunia Advisories (All time)

3.1. List for 2009

3.2. List for 2008

3.3. List for 2007

3.4. List for 2006

3.5. List for 2005

3.6. List for 2004

3.7. List for 2003

4. Send Feedback

Vendor, Links, and Unpatched Vulnerabilities

Vendor	N/A

Product Link	View Here (Link to external site)

Affected By	9 Secunia advisories 6 Vulnerabilities

Monitor Product	Receive alerts for this product

Unpatched	0% (0 of 9 Secunia advisories)

Most Critical Unpatched There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied..

9 Secunia Advisories in 2003-2009

Secunia has issued a total of 9 Secunia advisories in 2003-2009 for WinRAR 3.x. Currently, 0% (0 out of 9) are marked as unpatched.

More information about the specific Secunia advisories affecting WinRAR 3.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.

WinRAR Multiple Unspecified Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 1 in 2008. 26,678 views.

Release Date:
2008-03-19

Secunia Advisory ID:
SA29407

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS
System access

Where:
From remote

Short Description:
Some vulnerabilities have been reported in WinRAR, which can potentially be exploited by malicious people to compromise a vulnerable system. [Read More]

RARLabs UnRAR Password Prompt Buffer Overflow Vulnerability
Vendor Workaround. Secunia Advisory 1 of 1 in 2007. 14,028 views.

Release Date:
2007-02-08

Secunia Advisory ID:
SA24077

Solution Status:
Vendor Workaround

Criticality:

Impact:
System access

Where:
From remote

Short Description:
A vulnerability has been reported in RARLabs UnRAR, which can be exploited by malicious people to compromise a user's system. [Read More]

WinRAR LHA Archive Processing Buffer Overflow
Vendor Patch. Secunia Advisory 1 of 1 in 2006. 12,988 views.

Release Date:
2006-07-19

Secunia Advisory ID:
SA21080

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
Ryan Smith has reported a vulnerability in WinRAR, which can be exploited by malicious people to compromise a user's system. [Read More]

WinRAR Format String and Buffer Overflow Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 1 in 2005. 11,718 views.

Release Date:
2005-10-11

Secunia Advisory ID:
SA16973

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
Secunia Research has discovered two vulnerabilities in WinRAR, which can be exploited by malicious people to compromise a user's system. [Read More]

WinRAR Delete File Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2004. 16,407 views.

Release Date:
2004-12-22

Secunia Advisory ID:
SA13591

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
Vafa Khoshaein has discovered a vulnerability in WinRAR, which can be exploited by malicious people to compromise a user's system. [Read More]

WinRAR "Repair Archive" Feature Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2004. 28,365 views.

Release Date:
2004-11-03

Secunia Advisory ID:
SA13070

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
Peter Winter-Smith of NGSSoftware has reported a vulnerability in WinRAR, which can be exploited by malicious people to compromise a user's system. [Read More]

WinRAR Directory Traversal Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2003. 8,377 views.

Release Date:
2003-09-19

Secunia Advisory ID:
SA9790

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
A vulnerability has been reported in WinRAR, which potentially can be exploited by malicious people to compromise a user's system. [Read More]

WinRAR buffer overflow
Vendor Patch. Secunia Advisory 2 of 2 in 2003. 7,332 views.

Release Date:
2003-01-23

Secunia Advisory ID:
SA7933

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
WinRAR does not handle long filenames correctly, by supplying a long file extension (more than 256 characters) a buffer overflow is caused, this is exploitable and could allow malicious people to execute arbitrary code with the privileges of the logged in user. [Read More]

Various Archivers Directory Traversal Vulnerability
Vendor Patch. Secunia Advisory 1 of 1 in 2002. 14,980 views.

Release Date:
2002-12-18

Secunia Advisory ID:
SA7745

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
A vulnerability has been reported in various archivers, which can be exploited by malicious people to cause files to be extracted to arbitrary locations on a user's system. [Read More]