CVE-2007-1457

Name of the Vulnerable Software and Affected Versions UniquE RAR File Library (unrarlib, aka URARFileLib) version 0.4

Description The issue is related to a buffer overflow in the urarlib get function, which allows context-dependent attackers to execute arbitrary code. This can be achieved by providing a long filename, rarfile, or libpassword argument.

Recommendations For UniquE RAR File Library (unrarlib, aka URARFileLib) version 0.4, consider avoiding the use of long filenames, rarfiles, or libpassword arguments until a patch is available. As a temporary workaround, restrict the input length for these arguments to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.