Iranian Security Expert Discovers WinRAR Vulnerability

October 19, 2015


On October 18, 2015, the Iranian Security Researcher Mohammad Reza Espargham announced the discovery of a Remote Code Execution vulnerability in the compression software WinRAR. The vulnerability allows a remote user to hide malicious payloads within WinRAR archives to be executed upon decompression. Espargham posted the details of the vulnerability on the Iranian Exploit Database website.

Source:, October 18, 2015.