The flaw existed in unacev2.dll , a third-party library WinRAR used to unpack files. Path Traversal: Attackers could bypass folder restrictions.
Always run an antivirus scan on archives from unknown sources. If you'd like, I can help you with: Analyzing a specific file you found with this name. Patching your system to ensure you aren't vulnerable. Finding the original research by Check Point Software. 22793.rar
WinRAR failed to properly sanitize these paths, allowing the file to be written outside the intended extraction folder. ⚠️ Security Implications The flaw existed in unacev2