WinRAR vulnerable to remote code execution, patch now! (CVE-2023-40477)

RARLAB has fixed a high-severity RCE vulnerability (CVE-2023-40477) in the popular file archiver tool WinRAR. About CVE-2023-40477 A widely used Windows-only utility, WinRAR can create and extract file archives in various compression formats (RAR, ZIP, CAB, ARJ, LZH, TAR, GZip, UUE, ISO, BZIP2, Z and 7-Zip). CVE-2023-40477 is a remote code execution vulnerability that could allow remote threat actors to execute arbitrary code on an affected WinRAR installation. “The specific flaw exists within the processing … More →

The post …

7-zip archives code code execution compression cve don't miss extract file high hot stuff iso patch popular rar rce remote code remote code execution security update severity tar tool trend micro utility vulnerability vulnerable windows winrar zip