E19-5pi21
CVSS:
7.8 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
False Positive:
f
Variants:
384
Year:
2018
Description
This strike exploits an input validation vulnerability found in WinRAR.
The vulnerability is due to improper input validation while parsing specific header fields from an ACE archive.
An attacker could exploit this vulnerability by crafting a special ACE file.
A successful exploit could allow the attacker to execute arbitrary commands on the target system.