Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: WinRAR and RAR 3.51 Released SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
WinRAR and RAR 3.51 Released
WinRAR and RAR 3.51 has been released with fixes for the WinRAR Format String and Buffer Overflow Vulnerabilities discovered by Secunia Research. RARLAB is the home of the WinRAR and RAR archivers. Information on what's new in the latest version is here.

"Version 3.51

   1. Bugs fixed:

      a) fixed two vulnerabilities, which could be exploited with specially crafted ACE and UUE/XXE archives;

      b) previous version did not delete some of temporary files;

      c) WinRAR could crash when processing very long (more than 1024 characters) archive name parameter in the command line."

193 Posts
Nov 14th 2005

Sign Up for Free or Log In to start participating in the conversation!