CVE-2019-25677

Name of the Vulnerable Software and Affected Versions WinRAR version 5.61

Description A denial of service issue exists that allows local attackers to crash the application. This occurs when a malformed winrar.lng language file is placed in the installation directory. The crash is triggered when a user opens an archive and presses the test button, leading to an access violation at memory address 004F1DB8 due to the application attempting to read invalid data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.