Vulnerabilities > CVE-2004-1254 - Remote Security vulnerability in WinRar
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
WinRAR 3.40, and possibly earlier versions, allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, possibly causing an integer overflow that leads to a buffer overflow.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 8 |
Exploit-Db
description | WinRAR <= 3.4.1 Corrupt ZIP File Vulnerability PoC. CVE-2004-1254. Local exploit for windows platform |
id | EDB-ID:694 |
last seen | 2016-01-31 |
modified | 2004-12-16 |
published | 2004-12-16 |
reporter | Vafa Khoshaein |
source | https://www.exploit-db.com/download/694/ |
title | WinRAR <= 3.4.1 Corrupt ZIP File Vulnerability PoC |