A micropatch was released to fix a 19-year old arbitrary code execution vulnerability impacting 500 million users of the WinRAR compression tool and to keep ACE support after the app’s devs removed it when they patched the security issue.
Nadav Grossman from Check Point Software Technologies was the one who originally found the ACE Path Traversal logical bug in the UNACEV2.DLL library written by e-merge GmbH, the maintainer of WinACE software, using the WinAFL fuzzer.
As detailed by Grossman in his extremely detailed description of how he discovered the WinRAR security flaw:
Read more…
Source: Bleeping Computer