2,180
HIPHOP
SPORTS
WILD ISH
NEWS
x8
70 K
'10
Low Level
Aug 15, 2025
WinRAR is a GREAT piece of software, but every piece of software can have bugs. In this video we're talking about WinRAR exploits seen in the wild.
[00:00:00] Introduction to the cyberattacks exploiting WinRAR.
[00:00:14] Details about the threat from the "Romcom" hacking group.
[00:00:27] Explanation of WinRAR's file compression functionality.
[00:00:44] How WinRAR's RAR file format is processed.
[00:02:27] Discussion of the CVE 20258088 vulnerability related to Alternative Data Streams (ADS).
[00:04:50] How hackers use "directory traversal" to place malicious files.
[00:06:33] Explanation of the CVE 2023 38831 vulnerability.
[00:07:20] Why these logic-based bugs are particularly dangerous and easy to exploit.
[00:08:16] How legitimate applications can be tricked into loading malicious code.
[00:08:35] Clarification on why languages like Rust wouldn't necessarily prevent these specific types of flaws.
+10
x3
4 K
'25
+52
22 K
'04
+42
5 K
'18
+19
x8
OP
70 K
'10
Found 7-Zip years ago and never looked back. Got sick of WinRar begging me to pay for the full version.
+30
x17
64 K
'04
I MISS THE JUKEBOX SECTION NOW
-1
28 K
'05
+2
x7
88 K
'04
Been using Winrar since the early 2000s
Zshare days
+2
11 K
'12
x4
73 K
'05
I MISS THE JUKEBOX SECTION NOW
So that’s why it’s free..
Aug 17 - Amanda Seales Destroys 20 Black Conservatives
tech
