• About
  • Advertise
  • Careers
  • Contact
Monday, February 6, 2023
No Result
View All Result
NEWSLETTER
Cyber360 News
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
No Result
View All Result
Cyber360 News
No Result
View All Result
Home Security

This 19-Year-Old WinRAR Flaw Lets Hackers Load Malware To PCs

by Cyber360 News
November 11, 2019
in Security
0
This 19-Year-Old WinRAR Flaw Lets Hackers Load Malware To PCs
0
SHARES
4
VIEWS
Share on FacebookShare on Twitter

The popular windows file archival tool WinRAR has been in use for over two decades now. The software is used to view, create, pack and unpack archives in both ZIP and RAR formats. A recent report by The Register has revealed that the tool has a bug that has remained undetected since 2005.

This vulnerability in the compression tool can be used by attackers to install malware within a victim’s system and gain complete control. 

jamf now

Discovered by, Check Point, a software company based in Tel Aviv, Israel, the flaw in WinRAR was discovered during a fuzz test which is usually used to induce software crashes by feeding random data.

Caused by an old DLL (Dynamic Link Library) that was used to process files that were compressed in ACE format, the exploit has put over 500 million users around the world at risk today. The bug allows attackers to extract executable files into a computer’s startup folder. This means that programs would automatically run during every bootup. 

The severity of this vulnerability is further increased by the fact that any malicious ACE archive can be renamed into another RAR compression format without losing the exploit.

The creators of the popular file compression tool have patched this vulnerability by stopping support for the ACE format. Users of the tool will now have to update to the latest version (5.70 beta 1), which was released last month, to safeguard their devices from this major security flaw. The company has uploaded a video as well that shows this vulnerability in action.

Also Read: Your Password Manager Has A Severe Flaw — But You Should Still Use One
Cyber360 News

Cyber360 News

Next Post
Your Password Manager Has A Severe Flaw — But You Should Still Use One

Your Password Manager Has A Severe Flaw — But You Should Still Use One

Recent Posts

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

October 6, 2021
Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

October 1, 2021
Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

October 1, 2021

Whats New in Kali Linux?

September 14, 2021

Kali Linux 2019.3 Release (CloudFlare, Kali-status, metapackages, Helper-Scripts & LXD)

September 14, 2021

Kali Linux 2021.3 Release (OpenSSL, Kali-Tools, Kali Live VM Support, Kali NetHunter Smartwatch)

September 14, 2021

Kali Linux 2018.4 Release

September 14, 2021

Kali Linux 1.0.5 and Software Defined Radio

September 14, 2021

Kali Tools Website Launched, 1.0.9 Release

September 14, 2021

Kali Linux Dojo at Black Hat Vegas 2016

September 14, 2021

Category

Site Links

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

About Us

We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.

© 2019 Cyber360 News - Powered by WebSensePro

No Result
View All Result
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us

© 2019 Cyber360 News - Powered by WebSensePro

Login to your account below

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In