WinRAR Update Protects Hundreds of Millions from Malware
Critical security fix released for popular file archiver.
Users of WinRAR should update immediately. A recently discovered security flaw could allow malicious actors to execute harmful code on systems via booby-trapped RAR files. The patch addresses a vulnerability affecting millions worldwide.
Vulnerability Addressed
The latest version, 7.12, of the file-archiving software WinRAR, has fixed a serious issue. This flaw allowed for the potential installation of malware through specially crafted RAR files. The update addresses the problem affecting Windows versions of the application, which are used by over 500 million people.
This Tweet is currently unavailable. It might be loading or has been removed.
The vulnerability, cataloged as CVE-2025-6218, is rated as a “high” severity threat. It could permit attackers to place files in sensitive locations, such as the Windows Startup folder. This could potentially lead to unintended code execution upon the next system login. In 2024, the average cost of a data breach was $4.45 million (IBM).
How It Works
The problem stems from how WinRAR handles file paths during the extraction process. The release notes state, “A specially crafted archive containing arbitrary code could be used to manipulate file paths during extraction.”
Exploitation requires user interaction, potentially allowing files to be written outside the intended directory.
The danger surfaces when unsuspecting users download a compromised RAR file. This could happen via a file download or through torrents. The threat was discovered and reported by a user known as whs3-detonator.
Updating WinRAR
Unfortunately, there is no automatic update feature in WinRAR. Users must manually download and install version 7.12 from the official website to secure their systems. The WinRAR team confirms, “This issue affects only Windows-based builds.”
Other operating systems like Unix and Android are not affected.
By installing the update, WinRAR users can protect their computers from potential malware attacks. Prompt action is crucial in safeguarding against this high-severity vulnerability. Ensure your software is up to date.
