CVE-2007-3726

Published: December 7, 2007

Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number.

MEDIUM
CVSS v2: 4.3

Status

DocFilters Release	Package	State	Justification	Comment
25.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
24.4	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
24.4.0	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
24.3	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
24.2.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
24.2	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
24.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
23.3	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
23.2.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
23.2	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
23.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
22.4	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
22.3	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
22.2	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
22.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.11.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.11	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.8.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.8	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.5.1	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.5.0	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
21.2.0	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
11.4.20	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
11.4.19.3667	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
11.4.18.3599	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
11.4.17	unrar (5.9.1)	Not Affected	Code Not Present	5.9.1 does not match CVE configuration.
11.4.16.3445	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.15.3368	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.14.3263	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.13.3179	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.12.3054	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.11.3040	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.11.2990	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.10.2934	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.9.2878	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.
11.4.8.2822	unrar (5.3.9)	Not Affected	Code Not Present	5.3.9 does not match CVE configuration.

Severity score breakdown

References

NVD
MITRE