WinRAR is one of the most popular data storage and file compression applications. The first release of the program took place in 1993, i.e. in the era of Windows 3.11. The application is offered under a shareware license. Users receive a 40-day free trial, after which they are prompted to purchase a license.
The problem is that this message does not stop the program from working. For this reason, many users (probably most) actually use WinRAR “semi-legally”.
WinRar with (another) serious security flaw
. This vulnerability potentially allowed remote access to the victim’s computer.
Now facing another security hole in the application (as in the case of the one previously detected, it affects older releases – before version 6.23), a vulnerability called CV-2023-38831 allows hackers to “inject” malicious code into the victim’s computer when it opens an apparently a harmless-looking PNG image file in a ZIP archive.
“TAG has observed groups supported by governments from various countries that use the WinRAR vulnerability as part of their activities,” emphasize Google experts.
Recent campaigns exploiting the WinRAR bug highlight the importance of patching and the need to work to make it easier for users to keep their software secure and up-to-date
– they add.
Therefore, experts recommend updating WinRAR to the latest version 6.24 as soon as possible (the previous release 6.23 also offers the appropriate patch). , because the RarLab application does not offer automatic updates.
WinRar photo: WinRar
If you don’t know whether you have the latest version of WinRAR, you can easily check it. To do this, launch the application, click “Help” in the bookmarks bar, and then select the “About program” item.
Source: Gazeta
Mabel is a talented author and journalist with a passion for all things technology. As an experienced writer for the 247 News Agency, she has established a reputation for her in-depth reporting and expert analysis on the latest developments in the tech industry.
