WinRAR ACE Format Path Traversal Vulnerability

WinRAR ACE Format Path Traversal Vulnerability

CVE-2018-20250 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

In WinRAR versions prior to and including 5.61, There is path traversal vulnerability when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated with specific patterns, the destination (extraction) folder is ignored, thus treating the filename as an absolute path.

Learn more about our Web Application Penetration Testing UK.