Critical vulnerability in WinRAR

Hi There. We here at InfoPocket, a SonicWALL Business Partner, wish to inform our followers that if you are using an older version of the popular application WINRAR to update immediately. More information in the link.

A remote code execution vulnerability has been reported in WinRAR, exposing 500 million users to a possible attack. The vulnerability is due to improper handling of the relative path of a file in an ACE archive, which leads to directory traversal. A remote attacker could exploit this vulnerability by enticing a target user to open a maliciously crafted ACE file. Successful exploitation of the vulnerability could lead to arbitrary code execution in the context of the user.