March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Trickbot Malware – Active IOCs
November 9, 2021Rewterz Threat Advisory – Multiple IBM Vulnerabilities
November 9, 2021Rewterz Threat Alert – Trickbot Malware – Active IOCs
November 9, 2021Rewterz Threat Advisory – Multiple IBM Vulnerabilities
November 9, 2021
Severity
High
Analysis Summary
CVE-2021-35052
RARLAB WinRAR could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the mshtml.dll implementation. By using man-in-the-middle attack techniques, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Affected Vendors
WinRAR
Affected Products
- RARLAB WinRAR 5.7
Remediation
Update WinRAR to version 6.02.
Block script-based executions on all endpoints / Internet systems.
Management of third-party software must be controlled through policies and managing the risk associated with external applications.