WinRAR and RAR 3.51 has been released with fixes for the WinRAR Format String and Buffer Overflow Vulnerabilities discovered by Secunia Research. RARLAB is the home of the WinRAR and RAR archivers. Information on what's new in the latest version is here.
1. Bugs fixed:
a) fixed two vulnerabilities, which could be exploited with specially crafted ACE and UUE/XXE archives;
b) previous version did not delete some of temporary files;
c) WinRAR could crash when processing very long (more than 1024 characters) archive name parameter in the command line."
Nov 14th 2005
1 decade ago