CVE-2007-3726 - Vulnerability Details - OpenCVE

Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rarlab	Unrar

Configuration 1 [-]

cpe:2.3:a:rarlab:unrar:3.70_beta_3:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/39603
http://securityreason.com/securityalert/2880
http://www.securityfocus.com/archive/1/473371/100/0/threaded
http://www.securityfocus.com/archive/1/473373/100/0/threaded
http://www.securityfocus.com/archive/1/473376/100/0/threaded
http://www.securityfocus.com/archive/1/475155/30/5610/threaded

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-07-12T16:00:00

Updated: 2024-08-07T14:28:52.242Z

Reserved: 2007-07-11T00:00:00

Link: CVE-2007-3726

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-07-12T16:30:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-3726

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-07-11T00:00:00", "descriptions": [{"lang": "en", "value": "Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-15T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20070711 RE: Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/473376/100/0/threaded"}, {"name": "20070731 FLEA-2007-0037-1 unrar", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/475155/30/5610/threaded"}, {"name": "39603", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/39603"}, {"name": "20070711 Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/473371/100/0/threaded"}, {"name": "2880", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/2880"}, {"name": "20070711 Re: Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/473373/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-3726", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20070711 RE: Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/473376/100/0/threaded"}, {"name": "20070731 FLEA-2007-0037-1 unrar", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/475155/30/5610/threaded"}, {"name": "39603", "refsource": "OSVDB", "url": "http://osvdb.org/39603"}, {"name": "20070711 Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/473371/100/0/threaded"}, {"name": "2880", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/2880"}, {"name": "20070711 Re: Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/473373/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T14:28:52.242Z"}, "title": "CVE Program Container", "references": [{"name": "20070711 RE: Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/473376/100/0/threaded"}, {"name": "20070731 FLEA-2007-0037-1 unrar", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/475155/30/5610/threaded"}, {"name": "39603", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/39603"}, {"name": "20070711 Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/473371/100/0/threaded"}, {"name": "2880", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/2880"}, {"name": "20070711 Re: Advisory - Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/473373/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-3726", "datePublished": "2007-07-12T16:00:00", "dateReserved": "2007-07-11T00:00:00", "dateUpdated": "2024-08-07T14:28:52.242Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rarlab:unrar:3.70_beta_3:*:*:*:*:*:*:*", "matchCriteriaId": "C0D82CC5-F76B-40D3-8375-D9ED524713B8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Integer signedness error in the SET_VALUE function in rarvm.cpp in unrar 3.70 beta 3, as used in products including WinRAR and RAR for OS X, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive that causes a negative signed number to be cast to a large unsigned number."}, {"lang": "es", "value": "Error en la presencia de signo en entero en la funci\u00f3n SET_VALUE del rarvm.cpp en el unrar 3.70 beta 3, como el utilizado en productos incluyendo el WinRAR y RAR para OS X, permite a atacantes remotos con la intervenci\u00f3n del usuario provocar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de un archivo RAR modificado que provoca que un n\u00famero con signo negativo sea convertido en un n\u00famero largo sin signo."}], "id": "CVE-2007-3726", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2007-07-12T16:30:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/39603"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/2880"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/473371/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/473373/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/473376/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/475155/30/5610/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/39603"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/2880"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/473371/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/473373/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/473376/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/475155/30/5610/threaded"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}