Denial of Service due to poor handling of RAR archives. Specifically, the applications try to read negative locations from a memory pointer reference that is set when handling RAR archives.

Without the ability to exert fine control over the values being set, remote arbitrary code execution is not possible at this stage.

Description:

A number of products that process RAR archives have been found vulnerable to exploitation by remote attackers, leading to application crashes and system control in the worst cases. Products affected include those from Symantec (may not specifically be the same issue as affecting other vendors), ClamAV, Unrar, and others.

Mitigation:

Check with your software vendor to see whether a patch is required for your software.

Updates:

See applicable vendors for updates

Source:

Various

Exploits:

Not Yet Identified