EIP-2026-103644

PRE-CVE

Rar - CmdExtract::UnstoreFile Integer Truncation Memory Corruption

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103644. PoCs published by Google Security Research.

AI-analyzed exploit summary The exploit leverages an integer truncation vulnerability in CmdExtract::UnstoreFile, where a signed int64 DestUnpSize is truncated to an unsigned 32-bit integer, leading to a crash. This affects multiple antivirus products and archivers using the unrar source code.

Description

Rar - CmdExtract::UnstoreFile Integer Truncation Memory Corruption

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/38930

View Code ZIP pw:eip

The exploit leverages an integer truncation vulnerability in CmdExtract::UnstoreFile, where a signed int64 DestUnpSize is truncated to an unsigned 32-bit integer, leading to a crash. This affects multiple antivirus products and archivers using the unrar source code.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Avast Antivirus, WinRAR, and other archivers using unrar source

No auth needed

Prerequisites: A maliciously crafted archive file

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026