A new vulnerability has been discovered in WinRAR. Google Threat Analysis Group (TAG) found that: This loophole has been exploited by hackers since the beginning of 2023.
We recommend that all users update the program immediately.. “A patch is now available, but many users still appear vulnerable,” the Google article emphasizes. “TAG observed that actors supported by governments in various countries were exploiting the WinRAR vulnerability as part of their operations,” it adds.
The Google research group states that this loophole allows arbitrary code to be executed in situations such as when a user opens a PNG image file inside a compressed file. The dev describes the breach as a “logical vulnerability” that caused temporary files to expand strangely. Additionally, this loophole has been used to target cryptocurrency wallets since April.
The fix is distributed via update
Errors like this are nothing new for WinRAR. In 2019, the company released a fix for a serious problem that had been going on for 19 years.
According to the company, the bug fix is included in versions 6.24 or 6.23 of WinRAR. However, since the update does not happen automatically, users must install the package manually.
In any case, if WinRAR’s special functions are not important to you, it is worth remembering that Windows 11 will eventually gain support for the compressed file format. This feature should be added in a future system update.
Source: Tec Mundo
I am a passionate and hardworking journalist with an eye for detail. I specialize in the field of news reporting, and have been writing for Gadget Onus, a renowned online news site, since 2019. As the author of their Hot News section, I’m proud to be at the forefront of today’s headlines and current affairs.
