Guest User!
You are not Sophos Staff.
We're looking for information on Sophos' ability to detect and prevent exploits of CVE-2018-20250 for WinRAR, which are actively being seen in the wild. Any feedback would be awesome!
I will be contacting our team and will get back to you when I hear from them. Also, do you use ACE archives in your environment? This vulnerability can be exploited when WinRAR uses "unacev2.dll" library to parse ACE archives. If you do not use ACE archives, then you should update to the latest (Beta) version of WinRAR as they have dropped support for ACE file formats.
