Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-07-12T16:00:00
Updated: 2024-08-07T14:28:52.242Z
Reserved: 2007-07-11T00:00:00
Link: CVE-2007-3726
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-07-12T16:30:00.000
Modified: 2024-11-21T00:33:55.203
Link: CVE-2007-3726
Redhat
No data.