virus logo Intrusion Prevention

RARLAB.WinRAR.Recovery.Volume.Out-of-Bounds.Write

description-logoDescription

This indicates an attack attempt to exploit an Out of Bounds Write Vulnerability in RARLAB WinRAR.
This vulnerability is due to an out-of-bounds write when handling recovery volumes. A remote attacker could exploit this vulnerability by enticing a victim to open a crafted file. Successfully exploiting this vulnerability could result in remote code execution.

affected-products-logoAffected Products

RARLAB WinRAR prior to 6.23

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.win-rar.com/singlenewsview.html?&L=0&tx_ttnews%5Btt_news%5D=232&cHash=c5bf79590657e32554c6683296a8e8aa

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-07-15 28.826
Modified
 Name:RARLAB.
WinRAR.
Recovery.
Volume.
Out.
Of.
Bounds.
Write:RARLAB.
WinRAR.
Recovery.
Volume.
Out-of-Bounds.
Write
2024-04-04 27.761
Modified
2023-12-04 26.688
Modified
 Sig Added
2023-10-23 25.662
Modified
 Default_action:pass:drop
2023-10-12 25.655
New
ID 53956
Created Oct 04, 2023
Updated Jul 11, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 92.8%
Default Action drop
Active
Affected OS Windows
Affected App Other
Profile Type Buffer Errors