Windows WinRAR patched 19-year-old bug that left millions vulnerable

PoBoy

Well-Known Member
Veteran
Sep 7, 2005
2,154
303
172
Mumbai
https://www.engadget.com/2019/02/21/winrar-19-year-old-bug-patched/

Well, if you're one of the 500 million people who've used WinRAR over the years, the joke's on you. Researchers at Check Point Research uncovered a 19-year-old bug that created a security breach in your hard drive. In a detailed blog post, Check Point explained that by renaming an ACE file with a RAR extension, hackers could manipulate WinRAR to extract a malicious program to a computer's startup folder. The program would then run automatically when your computer started. Check Point says the flaw existed for 19 years. In response to the blog post, WinRAR was quick to patch the vulnerability, releasing a version 5.70 beta 1 in which it dropped support for ACE archives.
 
  • Like
Reactions: Crazy_Eddy