Ars Technica

Nasty code-execution bug in WinRAR threatened millions of users for 14 years

WinRAR, a Windows file compression program with 500 million users worldwide, recently fixed a more than 14-year-old vulnerability that made it possible for attackers to execute malicious code when ...
TechSpot

Remote code execution vulnerability found in older versions of WinRAR, update it now

In brief: Last week, a researcher discovered a vulnerability in older trial versions of the WinRAR file compression software. It allows for remote code execution---essentially allowing an attacker to ...
heise online

WinRAR: Code smuggling vulnerability is being attacked

A security vulnerability in the WinRAR compression program, present until version 7.12 Beta 1, allows attackers to inject malicious code. Attacks exploiting this vulnerability have now been observed.
Threat Post

19-Year-Old WinRAR Flaw Plagues 500 Million Users

Users of the popular file-compression tool are urged to immediately update after a serious code-execution flaw was found in WinRAR. Popular Windows data compression tool WinRAR has patched a serious ...
heise online

Security update: Attackers can inject Winrar with malicious code

Attackers can exploit a security vulnerability in Winrar and attack Windows PCs with malicious code. The developers have closed the vulnerability in the current version. The vulnerability ...
Ars Technica

High-severity WinRAR 0-day exploited for weeks by 2 groups

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...