642

WinRAR flaw lets hackers run programs when you open RAR archives (www.bleepingcomputer.com)

submitted 1 year ago by TheOneWithTheHair@lemmy.world to c/technology@lemmy.world

106 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] d3Xt3r@lemmy.nz 35 points 1 year ago

However, from a practical perspective, deceiving users into performing the required action shouldn't be overly challenging, and given the vast size of WinRAR's user base

Excuse me, but "vast" size of WinRAR's user base? I didn't know WinRAR even had any users left.

[-] kuneho@lemmy.world 27 points 1 year ago

9 out of 10 people I know use WinRAR. It's amongst the very firsr software they install at fresh start.

I myself also just changed to 7-Zip around... I don't know, a year ago?

[-] d3Xt3r@lemmy.nz 14 points 1 year ago

Which part of the world is this, if you don't mind me asking? (just genuinely curious, cause I haven't come across any WinRARs in the wild here in NZ, most folks I know use either 7-Zip or PeaZip).

[-] KnightontheSun@lemmy.world 6 points 1 year ago

Am in the US and used winrar for a long time as it was integrated into Usenet binaries as rar files. It was embedded with some other software.

[-] graphite@lemmy.world 10 points 1 year ago

WinRAR was what I used in the 2000s. Around 2011, 7-zip was my goto. I haven't looked back since.

I wasn't aware of pea-zip until this thread

[-] kuneho@lemmy.world 6 points 1 year ago

I'm from Europe, in the embrace of the Carpathian Mountains :)

before WinRAR, people used WinZIP here in the '00s (at least Windows folks). Again, a strange choice, I know.

[-] zewm@lemmy.zip 10 points 1 year ago

There is that one last user

https://youtu.be/lX_pF03vCSU

[-] PipedLinkBot@feddit.rocks 7 points 1 year ago

Here is an alternative Piped link(s): https://piped.video/lX_pF03vCSU

Piped is a privacy-respecting open-source alternative frontend to YouTube.

I'm open-source, check me out at GitHub.

[-] w00t@lemy.lol 9 points 1 year ago

Well, even FAR manager which they've open-souced long time ago is still maintained 😀 Good thing they didn't discover this bug in 2000s!

[-] d3Xt3r@lemmy.nz 8 points 1 year ago

That looks quite interesting, seems like they've even got quite an extensive list of plugins - looks like may be even better than Midnight Commander. :o

[-] Scrof@sopuli.xyz 1 points 1 year ago

I'm still using sweet FAR Manager, absolute baller of a software.

[-] kuneho@lemmy.world 1 points 1 year ago* (last edited 1 year ago)

Ah, FAR manager.

I used it last time around... 15 years ago to apply VKP patches on my Sony Ericsson phones :P like making my K750i into a 'W750i' with W800i software, adding GFX and Acoustic patches...

[-] Kecessa@sh.itjust.works 2 points 1 year ago

Still use it out of habit!

this post was submitted on 19 Aug 2023

642 points (98.8% liked)

Technology

57313 readers

4758 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS