CVE-2019-25677

MEDIUM

WinRAR 5.61 Denial of Service via Malformed Language File

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25677. PoCs published by Kağan Çapar.

AI-analyzed exploit summary This Perl script generates a malicious 'winrar.lng' file that triggers a Denial of Service (DoS) in WinRAR 5.61 when the file is used in an archive and the 'Test' button is pressed. The exploit leverages a vulnerability in the language file parsing mechanism, causing a crash.

Description

WinRAR 5.61 contains a denial of service vulnerability that allows local attackers to crash the application by placing a malformed winrar.lng language file in the installation directory. Attackers can trigger the crash by opening an archive and pressing the test button, causing an access violation at memory address 004F1DB8 when the application attempts to read invalid data.

Exploits (1)

exploitdb WORKING POC

by Kağan Çapar · perldoswindows

https://www.exploit-db.com/exploits/46432

View Code ZIP pw:eip

This Perl script generates a malicious 'winrar.lng' file that triggers a Denial of Service (DoS) in WinRAR 5.61 when the file is used in an archive and the 'Test' button is pressed. The exploit leverages a vulnerability in the language file parsing mechanism, causing a crash.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: WinRAR 5.61

No auth needed

Prerequisites: WinRAR 5.61 installed · ability to place the generated 'winrar.lng' file in the WinRAR installation directory

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Apr 07, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-46432

https://www.exploit-db.com/exploits/46432

Product product

Product Reference

https://win-rar.com/predownload.html?spV=true&subD=true&f=wrar561tr.exe

Third Party Advisory third-party-advisory

VulnCheck Advisory: WinRAR 5.61 Denial of Service via Malformed Language File

https://www.vulncheck.com/advisories/winrar-denial-of-service-via-malformed-language-file

Scores

CVSS v3 6.2

EPSS 0.0002

EPSS Percentile 5.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-379

Status published

Products (2)

rarlab/winrar < 5.61

Win-Rar/WinRAR 5.61 32 Bit

Published Apr 05, 2026

Tracked Since Apr 06, 2026