Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-07-12T16:00:00

Updated: 2024-08-07T14:28:52.242Z

Reserved: 2007-07-11T00:00:00

Link: CVE-2007-3726

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-07-12T16:30:00.000

Modified: 2024-11-21T00:33:55.203

Link: CVE-2007-3726

cve-icon Redhat

No data.