Experts have discovered a vulnerability in the WinRAR archiver that allows attackers to bypass the Mark of the Web (MotW), a Windows protection mechanism, and deploy malware on victims’ computers.

Image Source: Kevin Ku / unsplash.com

The vulnerability was discovered by Japanese researcher Shimamine Taihei from Mitsui Bussan Secure Directions — it was assigned the number CVE-2025-31334 and the threat level was 6.8 out of 10 — medium. MotW is a security tool that displays a warning when downloading an executable file from the Internet. The built-in Windows mechanism notifies users that files downloaded from the Internet may be dangerous, but there was a way to bypass this warning if the file was in an archive format.

«If a symbolic link pointing to an executable file was opened from the WinRAR shell, the Mark of the Web executable file data was ignored,” the archiver’s website explains. A symbolic link (or Symlink) is a shortcut or alias to a file or folder. A symbolic link is not a copy of a file, but only a pointer to it. A hacker could create a symbolic link pointing to an executable file with MotW, and when it was opened, the MotW warning was not displayed. The vulnerability was discovered in all older versions of WinRAR and was fixed in version 7.11, which is now available for download.

AddThis Website Tools
admin

Share
Published by
admin

Recent Posts

SnowRunner creators’ ‘revolutionary’ RoadCraft simulator earns ‘mixed’ reviews on Steam releaseSnowRunner creators’ ‘revolutionary’ RoadCraft simulator earns ‘mixed’ reviews on Steam release

SnowRunner creators’ ‘revolutionary’ RoadCraft simulator earns ‘mixed’ reviews on Steam release

As promised, the “revolutionary” construction simulator RoadCraft from Saber Interactive (SnowRunner, Expeditions: A MudRunner Game)…

23 hours ago
Google has taught Meet to translate speech on the fly while preserving intonation and tone of voiceGoogle has taught Meet to translate speech on the fly while preserving intonation and tone of voice

Google has taught Meet to translate speech on the fly while preserving intonation and tone of voice

Google unveiled a new live translation feature for its Google Meet video conferencing service at…

23 hours ago

CMF Phone 2 Pro Review: Still Surprising

Last year, Nothing introduced the first smartphone under its budget sub-brand CMF by Nothing. The…

23 hours ago
Google Chrome Will Start Automatically Changing Weak or Hacked Passwords, But Will Ask for Permission FirstGoogle Chrome Will Start Automatically Changing Weak or Hacked Passwords, But Will Ask for Permission First

Google Chrome Will Start Automatically Changing Weak or Hacked Passwords, But Will Ask for Permission First

At Google I/O, the company announced a new feature in Chrome that will automatically update…

23 hours ago
The End of Silent AI Video: Google Unveils Veo 3, the First Video Generator with SoundThe End of Silent AI Video: Google Unveils Veo 3, the First Video Generator with Sound

The End of Silent AI Video: Google Unveils Veo 3, the First Video Generator with Sound

Google presented the latest AI model for generating videos from text descriptions, Veo 3, at…

23 hours ago
GTX 750 Ti is no longer enough for the game: Ubisoft announced the system requirements of Rainbow Six Siege XGTX 750 Ti is no longer enough for the game: Ubisoft announced the system requirements of Rainbow Six Siege X

GTX 750 Ti is no longer enough for the game: Ubisoft announced the system requirements of Rainbow Six Siege X

Publisher and developer Ubisoft has revealed the system requirements for Tom Clancy's Rainbow Six Siege…

2 days ago