CVE-2018-20250

Name of the Vulnerable Software and Affected Versions WinRAR versions prior to and including 5.61

Description The issue is related to a path traversal vulnerability in the unacev2.dll library of WinRAR, which occurs when the filename field of the ACE format is crafted in a specific way. This allows an attacker to ignore the destination folder and treat the filename as an absolute path, enabling them to extract files to arbitrary locations on the disk. The vulnerability can be exploited by manipulating the filename field with specific patterns, effectively allowing code execution. There have been reports of targeted attacks exploiting this vulnerability.

Recommendations For WinRAR versions prior to and including 5.61, update to a version later than 5.61 to resolve the issue. As a temporary workaround, consider avoiding the use of ACE archives or restricting the extraction of files from ACE archives to a safe location until a patch is applied. Additionally, be cautious when extracting files from archives, especially those from untrusted sources, to minimize the risk of exploitation.