KLA10539
Multiple vulnerabilities in Open-source ARJ archiver
Updated: 06/01/2019
Detect date
?
04/08/2015
Severity
?
Critical
Description

Buffer overflow, improper strings restriction and other unknown vulnerabilities were found in Open-source ARJ archiver. By exploiting these vulnerabilities malicious users can cause denial of service, execute arbitrary code or write to arbitrary local files. These vulnerabilities can be exploited remotely via a specially designed ARJ archive.

Affected products

Open-source ARJ archiver 3.10.22

Solution

If you want to stay safe you can choose another archiver. Author does not update product for 10 years.

Impacts
?
ACE 
[?]

DoS 
[?]

WLF 
[?]
CVE-IDS
?