In early 2019, security researchers discovered a critical flaw in how WinRAR handled .ace archive formats. This was a major news story because the vulnerability had existed undetected for nearly two decades.
: Attackers could create a malicious archive that, when extracted, would place a file in the Windows "Startup" folder instead of the intended extraction path. This allowed for remote code execution , meaning a hacker could gain control of a PC just by having a user open a specifically crafted file. Download news 2019 rar
: More recent vulnerabilities, such as CVE-2023-40477 and CVE-2025-8088 , continue to highlight the importance of keeping archive tools updated to the latest versions (currently v7.xx). Safety Recommendations In early 2019, security researchers discovered a critical
: Since the original developer of the library was out of business, WinRAR (RARLAB) could not patch the code. Instead, they removed support for ACE archives entirely starting with WinRAR version 5.70. Summary of WinRAR News & Updates This allowed for remote code execution , meaning
: If you have a legitimate but corrupted RAR file, you can use the "Repair archive" function (Alt + R) within the WinRAR application. How to Open RAR Files on Windows, Mac, and Mobile - Avast