Описание
Archive.java in Junrar before 1.0.1, as used in Apache Tika and other products, is affected by a denial of service vulnerability due to an infinite loop when handling corrupt RAR files.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Fuse 7 | junrar | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-835
https://bugzilla.redhat.com/show_bug.cgi?id=1591917junrar: infinite loop when handling corrupt RAR files
3.3 Low
CVSS3
Связанные уязвимости
CVSS3: 5.5
nvd
больше 7 лет назад
Archive.java in Junrar before 1.0.1, as used in Apache Tika and other products, is affected by a denial of service vulnerability due to an infinite loop when handling corrupt RAR files.
3.3 Low
CVSS3