CVE-2005-4620
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-4620
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specify a command-line argument for this program, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
RARLAB WinRAR命令行处理溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WinRar是非常流行的压缩/解压工具。 WinRar对命令行的处理存在溢出漏洞,攻击者可能利用这个漏洞远程执行任意代码。由于在将用户提供的字符串拷贝到静态进程缓冲区之前没有正确的验证其长度,RARLAB WinRAR在处理命令行时存在远程客户端溢出漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-4620
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-4620
请登录查看更多情报信息。
Same Patch Batch · n/a · 2006-01-06 · 29 CVEs total
| CVE-2005-4625 | 某些显示适配器的驱动拒绝服务攻击漏洞 | |
| CVE-2005-3654 | Blue Coat Systems WinProxy Telnet远程拒绝服务攻击漏洞 | |
| CVE-2006-0104 | TinyPHPForum多个目录遍历漏洞 | |
| CVE-2006-0103 | TinyPHPForum 信息泄露漏洞 | |
| CVE-2006-0102 | TinyPHPForum 跨站脚本攻击漏洞 | |
| CVE-2006-0101 | sBLOG 0.7.1 多个跨站脚本攻击漏洞 | |
| CVE-2006-0100 | NicoFTP 缓冲区溢出漏洞 | |
| CVE-2006-0099 | Valdersoft Shopping Cart远程文件包含漏洞 | |
| CVE-2006-0098 | OpenBSD DEV/FD任意文件访问漏洞 | |
| CVE-2006-0097 | PHP MySQL_Connect远程溢出漏洞 | |
| CVE-2006-0096 | Linux Kernel SDLA IOCTL未经授权的本地固件访问漏洞 | |
| CVE-2006-0095 | Linux Kernel DM-Crypt本地信息泄露漏洞 | |
| CVE-2005-4627 | GMailSite跨站脚本攻击漏洞 | |
| CVE-2005-4626 | Recruitment Software 访问控制漏洞 | |
| CVE-2005-3357 | Apache Mod_SSL可定制错误文档拒绝服务漏洞 | |
| CVE-2005-4624 | PTnet IRCD远程拒绝服务漏洞 | |
| CVE-2005-4623 | EFileGo多个输入验证漏洞 | |
| CVE-2005-4622 | EFileGo目录遍历漏洞 | |
| CVE-2005-4621 | VBulletin Profile.PHP跨站脚本攻击漏洞 | |
| CVE-2005-4085 | Blue Coat Systems WinProxy Host头部请求字段远程溢出漏洞 |
Showing top 20 of 29 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-6638
PostgreSQL REFRESH PUBLICATION allows SQL injection via tabl - CVE-2026-6575
PostgreSQL pg_restore_attribute_stats accepts values that ca - CVE-2026-6637
PostgreSQL refint allows stack buffer overflow and SQL injec - CVE-2026-6479
PostgreSQL SSL/GSS init causes denial of service, via uncont - CVE-2026-6478
PostgreSQL discloses MD5-hashed passwords via covert timing
V. Comments for CVE-2005-4620
No comments yet