RARLAB WinRAR LHA Filename Handling Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

RARLAB WinRAR LHA Filename Handling Buffer Overflow Vulnerability

This issue is being exploited in the wild by Trojan.Radropper.

The following exploit code is available:

UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

/data/vulnerabilities/exploits/lzh.c