2 matches found
CVE-2015-5663
CVE-2015-5663 affects WinRAR prior to 5.30 beta 5. The issue is in file-execution/registry-handling: when a user opens a file without an extension, WinRAR may execute a similarly named file with an extension in the same folder or load a registry setting file, enabling local privilege escalation. ...
KLA10729 Privilege escalation vulnerability in WinRAR
Improper files handling was found in WinRAR. By exploiting this vulnerability malicious users can execute arbitrary code with WinRAR privileges. This vulnerability can be exploited remotely via a specially designed archive. Technical details This vulnerability related to two WinRAR functions:one...