Arbitrary File Creation Vulnerability in WinRAR 3.42 and Earlier

Arbitrary File Creation Vulnerability in WinRAR 3.42 and Earlier

CVE-2005-0331 · LOW Severity

AV:N/AC:H/AU:N/C:N/I:P/A:N

Directory traversal vulnerability in WinRAR 3.42 and earlier, when the user clicks on the ZIP file to extract it, allows remote attackers to create arbitrary files via a ... (triple dot) in the filename of the ZIP file.

Learn more about our User Device Pen Test.