VYPR
Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Jun 16, 2026

CVE-2004-1254

CVE-2004-1254

Description

WinRAR 3.40, and possibly earlier versions, allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, possibly causing an integer overflow that leads to a buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Rarlab/Winrar9 versions
    cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.10:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.10_beta3:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.10_beta5:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.11:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.40:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.41:*:*:*:*:*:*:*
    • (no CPE)range: <=3.40

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.