VYPR
Unrated severityNVD Advisory· Published May 2, 2005· Updated Jun 16, 2026

CVE-2005-0331

CVE-2005-0331

Description

Directory traversal vulnerability in WinRAR 3.42 and earlier, when the user clicks on the ZIP file to extract it, allows remote attackers to create arbitrary files via a ... (triple dot) in the filename of the ZIP file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Rarlab/Winrar9 versions
    cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:rarlab:winrar:3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.10:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.10_beta3:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.10_beta5:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.11:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.40:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.41:*:*:*:*:*:*:*
    • cpe:2.3:a:rarlab:winrar:3.42:*:*:*:*:*:*:*
  • WinRAR/WinRARllm-create
    Range: <=3.42

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.