What's new

WinRAR Patches 19-Year-Old Security Vulnerability


Administrator, Security Analyst
Staff member
Feb 22, 2012
Upstate, NY
Doing a quick search here, numerous threads showed up with WinRAR listed. If you have WinRAR installed, it is time to either update it or remove it.

From WinRAR patches 19 year old security bug that put millions at risk - The Verge:

WinRAR has patched a 19-year-old security vulnerability that allowed attackers to extract malicious software to anywhere on your hard drive. The vulnerability was discovered by researchers at Check Point Software Technologies, who realised that WinRAR’s support for the effectively defunct ACE archive format meant that it was still relying on an insecure and dated DLL file from 2006.