The vulnerability of the unacev2.dll library of the WinRAR file compressor allows attackers to deploy malicious files outside the extraction directory.

The vulnerability of the unacev2.dll file archiver in WinRAR is related to insufficient checking of the file name field during extraction. Exploiting this vulnerability allows a remote attacker to place malicious files outside the extraction directory, using a specially crafted ACE archive...