19-year-old vulnerability in WinRAR finally fixed

Flaw affecting 500 million users could enable hackers to execute remote code

Security flaw

Security researchers have discovered a bug in the WinRAR file compression application that can allow hackers to execute code remotely. The flaw has existed in all versions of the software for the last 19 years.

According to a blog post by researchers at Check Point Software, the exploit works by just extracting an archive, and puts over 500 million users at risk.

"We found a logical bug using the WinAFL fuzzer and exploited it in WinRAR to gain full control over a victim's computer," said Nadav Grossman of Check Point Software.

"The exploit works by just extracting an archive and puts over 500 million users at risk. This vulnerability has existed for over 19 years(!) and forced WinRAR to completely drop support for the vulnerable format."

The flaw exists in the UNACEV2.DLL library included with all WinRAR versions. This library is used for parsing ACE (a data compression archive file format) archives.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Researchers found a path-traversal flaw that enables hackers to extract executable files into a computer's startup folder. This means that programs would run automatically whenever a system is booted up. All an attacker has to do is make a victim open a malicious archive file using WinRAR.

In response, WinRAR has dropped UNACEV2.dll from their package to fix the problem and has released WINRar version 5.70 beta 1 that doesn't support the ACE format. vWinRAR said that UNACEV2.DLL had not been updated since 2005 and it no longer has access to its source code.

The flaw is tracked under the CVE-2018-20250, CVE-2018-20251, CVE-2018-20252, and CVE-2018-20253 identifiers.

Windows users are advised to install the latest version of WinRAR as soon as possible and avoid opening files received from unknown sources.

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/microsoft-windows/32066/what-to-do-if-youre-still-running-windows-7
Microsoft Windows

What to do if you're still running Windows 7

14 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Visit/policy-legislation/general-data-protection-regulation-gdpr/354577/data-protection-fines-hit-ps100m
General Data Protection Regulation (GDPR)

Data protection fines hit £100m during first 18 months of GDPR

20 Jan 2020