PT-2015-7023 · Rarlab · Winrar
Publicado
2015-12-30
·
Atualizado
2016-12-06
·
CVE-2015-5663
CVSS v2.0
3.7
Baixa
| Vetor | AV:L/AC:H/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
WinRAR versions prior to 5.30 beta 5
Description
The issue concerns the file-execution functionality, allowing local users to gain privileges through a Trojan horse file. This can occur when a user selects an extensionless filename and a malicious file with a similar name is executed.
Recommendations
For versions prior to 5.30 beta 5, update to version 5.30 beta 5 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Winrar