Directory Traversal exists in RAR 4.x and 5.x because an unpack operation follows any symlinks, including symlinks contained in the archive. This allows remote attackers to write to arbitrary files via a crafted archive.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
Link | Providers |
---|---|
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774172 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-06T14:02:37.642Z
Reserved: 2017-06-04T00:00:00
Link: CVE-2014-9983

No data.

Status : Deferred
Published: 2017-06-04T23:29:00.187
Modified: 2025-04-20T01:37:25.860
Link: CVE-2014-9983

No data.

No data.