漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Issue that bypasses the "Mark of the Web" security warning function for files when opening a symbolic link that points to an executable file exists in WinRAR versions prior to 7.11. If a symbolic link specially crafted by an attacker is opened on the affected product, arbitrary code may be executed.
CVSS Information
N/A
Vulnerability Type
产品UI接口未警示用户不安全动作
Vulnerability Title
WinRAR 安全漏洞
Vulnerability Description
WinRAR是WinRAR公司的一款文件压缩器。该产品支持RAR、ZIP等格式文件的压缩和解压等。 WinRAR 7.11之前版本存在安全漏洞,该漏洞源于符号链接绕过安全警告功能,可能导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A