CVE-2012-6706

Name: CVE-2012-6706
Creator: NVD / NIST
Published: 2017-06-22T13:29:00.173+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 10.03%

Last modified Jun 16, 2026

CVE-2012-6706 is a vulnerability of currently unknown severity. A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine before 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. EPSS estimates a 10.03% chance of exploitation in the next 30 days.

Description

A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine before 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative value of the "DestPos" variable, which allows the attacker to write out of bounds when setting Mem[DestPos].

Metrics

EPSS Probability

10.03%

95.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-190

Affected Software

Vendor	Product	Versions
Sophos	Threat Detection Engine	<= 3.36.2
Rarlab	Unrar	<= 5.5.4

References

http://securitytracker.com/id?1027725Third Party Advisory
http://telussecuritylabs.com/threats/show/TSL20121207-01Third Party Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1286Exploit, Third Party Advisory
https://community.sophos.com/kb/en-us/118424#sixVendor Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10205
https://lock.cmpxchg8b.com/sophailv2.pdfThird Party Advisory
https://nakedsecurity.sophos.com/2012/11/05/tavis-ormandy-sophos/Vendor Advisory
https://security.gentoo.org/glsa/201708-05
https://security.gentoo.org/glsa/201709-24
https://security.gentoo.org/glsa/201804-16
http://securitytracker.com/id?1027725Third Party Advisory
http://telussecuritylabs.com/threats/show/TSL20121207-01Third Party Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1286Exploit, Third Party Advisory
https://community.sophos.com/kb/en-us/118424#sixVendor Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10205
https://lock.cmpxchg8b.com/sophailv2.pdfThird Party Advisory
https://nakedsecurity.sophos.com/2012/11/05/tavis-ormandy-sophos/Vendor Advisory
https://security.gentoo.org/glsa/201708-05
https://security.gentoo.org/glsa/201709-24
https://security.gentoo.org/glsa/201804-16

Timeline

Published: Jun 22, 2017
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2012-6706?

How severe is CVE-2012-6706?

Severity scoring for CVE-2012-6706 is pending analysis. The EPSS model estimates a 10.03% probability of exploitation in the next 30 days.

How do I fix CVE-2012-6706?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-6706?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST