WEB RARLAB WinRAR File Extension Spoofing Vulnerability (CVE-2023-38831) state 0

Rule ID

1233658

Severity

Medium

Description

It's an auxiliary rule as a pre-match for HTTP GET ZIP files detection (.zip extension), and should not be triggered.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

File vulnerabilities

IPS Anomaly Group

N/A

IPS Rule Default Action

Allow

References

CVE-2023-38831

T1203

T0863

T1204.002

Keywords

N/A

Date Created

2023/09/11

Last Updated

2025/04/02

This website uses cookies to ensure you get the best experience on our website.