2y ago

WinRAR flaw lets hackers run programs when you open RAR archives

www.bleepingcomputer.com /news/security/winrar-flaw-lets-hackers-run-programs-when-you-open-rar-archives/

The flaw is tracked as CVE-2023-40477 and could give remote attackers arbitrary code execution on the target system after a specially crafted RAR file is opened.

RARLAB released WinRAR version 6.23 on August 2nd, 2023, effectively addressing CVE-2023-40477.

https://www.zerodayinitiative.com/advisories/ZDI-23-1152/

News @kbin.social

readbeanicecream @kbin.social

2y ago

WinRAR flaw lets hackers run programs when you open RAR archives

www.bleepingcomputer.com /news/security/winrar-flaw-lets-hackers-run-programs-when-you-open-rar-archives/

13 3

Technology @lemmy.world

TheOneWithTheHair @lemmy.world

2y ago

WinRAR flaw lets hackers run programs when you open RAR archives

www.bleepingcomputer.com /news/security/winrar-flaw-lets-hackers-run-programs-when-you-open-rar-archives/

640 106

4 comments

People still use WinRAR? Does it offer anything more than 7-zip?
- Yes, many people in an office environment. Just habit like the Total Commander :|
  Back in the time, it offered much better compression ratio than popular (Win)Zip. And it has SFX feature.
- For people compressing things a lot, winrar is much more productive than 7z. I can easily set up default profile in winrar (best compression quality + delete files after archiving) but can't do this with 7z
  
  tar with pigz for compressiom is a lifesaver for large archives.