CVE-2017-14121

Name of the Vulnerable Software and Affected Versions unrar versions 0.0.1

Description The issue is related to a NULL pointer dereference flaw in the DecodeNumber function, located in the unrarlib.c file. This flaw can be triggered by a crafted RAR archive, potentially leading to a crash or other unintended behavior.

Recommendations For unrar version 0.0.1, consider avoiding the use of the DecodeNumber function until a patch is available. As a temporary workaround, restrict the processing of RAR archives from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.