- Jun 9, 2013
- 6,720
WinRAR 5.21 affected by remote code execution vulnerability
WinRAR, the popular file compression and decompression utility, has a security vulnerability that allows attackers to remotely execute code on the user's computer when opening an SFX (Self-extracting archive) file.
The bug was discovered by Mohammad Reza Espargham from Vulnerability Lab, and was also reproduced by Pieter Arntz from Malwarebytes.
According to the vulnerability disclosure details, the bug only affects the latest version, 5.21, and can be used by any attacker crafty enough to place malicious HTML code inside the "Text to display in SFX window" section when creating a new SFX file.
After sending the archive to a victim, whenever the file is launched, the malicious code is executed as well, and depending on the attacker's skill, it could lead to system, network or device compromise.
To exploit this vulnerability, attackers don't need special privileges on the targeted machine.
Full article. Latest Version of WinRAR Plagued by Dangerous Security Bug
WinRAR, the popular file compression and decompression utility, has a security vulnerability that allows attackers to remotely execute code on the user's computer when opening an SFX (Self-extracting archive) file.
The bug was discovered by Mohammad Reza Espargham from Vulnerability Lab, and was also reproduced by Pieter Arntz from Malwarebytes.
According to the vulnerability disclosure details, the bug only affects the latest version, 5.21, and can be used by any attacker crafty enough to place malicious HTML code inside the "Text to display in SFX window" section when creating a new SFX file.
After sending the archive to a victim, whenever the file is launched, the malicious code is executed as well, and depending on the attacker's skill, it could lead to system, network or device compromise.
To exploit this vulnerability, attackers don't need special privileges on the targeted machine.
Full article. Latest Version of WinRAR Plagued by Dangerous Security Bug