Hi,
If this is related to application security, a RAR bomb is a version of compression/decompression bombs that can be used to attack applications (mostly web based). Its main goal is a DoS attack, i.e. to crash down the application service.
This kind of bomb is usually made from an amazingly huge file (say 250GB) and compress it to a very small or reasonable size (few hundreds of KB for example).
The idea is to ship this seemingly harmless compressed file to an application that, by process or logic, will try to decompress it. When it does, the amount of resources need to be allocated is simply too much. This is true especially if the attacker is sending it multiple times. If the application does not have sufficient security mechanism, it will be vulnerable to this kind of attack.
e.e
|