The broadly used file compression instrument for Home windows, WinRAR, has simply launched model 7.13 to tackle a extreme safety vulnerability recognized as CVE-2025-8088. This flaw, discovered by ESET security researchers, particularly impacts the Home windows model of WinRAR, concentrating on the UNRAR.dll library. The vulnerability permits attackers to craft malicious archive recordsdata that, when extracted by a consumer, trick WinRAR into writing recordsdata to a location of the attacker’s selecting as a substitute of the listing chosen by the consumer.
Exploitation of this vulnerability has been noticed within the wild, notably by way of phishing campaigns. Attackers have despatched emails containing specifically designed RAR archives that, when extracted, deposit executable recordsdata into delicate Home windows folders such because the Startup folder (%APPDATApercentMicrosoftWindowsStart MenuProgramsStartup). Any computer virus positioned right here is mechanically executed the subsequent time the system begins, leading to full compromise of the affected machine. This technique allows attackers to achieve persistent entry and doubtlessly execute additional malicious actions, together with putting in distant entry trojans (RATs).
The first malware linked to exploitation of this flaw is known as RomCom, a Distant Entry Trojan (RAT) related to cybercriminals recognized for social engineering assaults. These attackers disguise their malware as official purposes, encouraging customers to obtain and set up compromised WinRAR variations. RomCom has been noticed concentrating on organizations in varied sectors, and there’s proof connecting its exploitation of CVE-2025-8088 to Russian-linked teams. Earlier assaults enabled distant code execution, information exfiltration, and deployment of additional malware payloads.
It is very important notice that Unix variations of RAR and UnRAR, together with the variations for Android, should not affected by this vulnerability. The safety challenge is confined to Home windows customers, and solely these with the affected variations (previous to 7.13) are in danger.
In contrast to some trendy software program, WinRAR doesn’t function computerized updates. Customers should go to the official WinRAR website and manually obtain and set up the most recent model to be protected. Failure to improve leaves methods uncovered to energetic threats.
Filed in . Learn extra about Security, Windows 10 and Windows 11.
Trending Merchandise
Zalman P10 Micro ATX Case, MATX PC Case with 120mm ARGB Fan Pre-Put in, Panoramic View Tempered Glass Entrance & Aspect Panel, USB Sort C and USB 3.0, White
Logitech MK470 Slim Wireless Keyboard and Mouse Combo – Modern Compact Layout, Ultra Quiet, 2.4 GHz USB Receiver, Plug n’ Play Connectivity, Compatible with Windows – Off White
ASUS 24 Inch Desktop Monitor – 75Hz, Full HD (1920×1080), IPS, Frameless, Adaptive-Sync, Eye Care, HDMI, D-Sub DVI-D – VA24EHE
Sceptre Curved 24-inch Gaming Monitor 1080p R1500 98% sRGB HDMI x2 VGA Build-in Speakers, VESA Wall Mount Machine Black (C248W-1920RN Series)
MSI MPG GUNGNIR 110R – Premium Mid-Tower Gaming PC Case – Tempered Glass Side Panel – 4 x ARGB 120mm Fans – Liquid Cooling Support up to 360mm Radiator – Two-Tone Design
Wi-fi Keyboard and Mouse Combo – Rii Commonplace Workplace for Home windows/Android TV Field/Raspberry Pi/PC/Laptop computer/PS3/4 (1PACK)
CORSAIR iCUE 4000X RGB Tempered Glass Mid-Tower ATX PC Case – 3X SP120 RGB Elite Followers – iCUE Lighting Node CORE Controller – Excessive Airflow – Black
