CVE-2018-20252

In WinRAR versions prior to and including 5.60, there is an out-of-bounds write vulnerability during parsing of crafted ACE and RAR archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Date published : 2019-02-05

http://www.securityfocus.com/bid/106948

https://research.checkpoint.com/extracting-code-execution-from-winrar/