The National Cyber Security Agency of the United States, CISA, has warned of new vulnerabilities that cybercriminals are actively exploiting. One of them, DogWalk, is a zero-day vulnerability that affects Windows and Windows Server. The other affects UnRAR, the program for decompressing files.
known by the name DogWalkand registered as CVE-2022-34713, is a remote code execution vulnerability that is being exploited by cybercriminals to implant executable malware in the home folder of Windows.
It is a vulnerability that Microsoft was already aware of since 2020 but, as it points out, it did not consider it to represent a security problem for users.
However, recently it has been possible to verify the risks that it may entail. Doing use of social engineeringcybercriminals can lead users to fake web pages or open malicious files, thereby executing malicious code remotely.
This vulnerability affects all versions of Windows, including the latest ones, both Windows 11 What Windows Server 2022.
Faced with this threat, Microsoft has backed down and issued a patch in its latest security update, encouraging users to implement it to ensure their safety.
Vulnerabilities also in Linux and UNIX
Another vulnerability to which we must pay special attention these days is the one detected in the program to decompress files RAR. In this case, CISA warns that it is designed for Linux and UNIX systems so that when the user decompresses a RAR file, the malware is downloaded to the arbitrary file system.
The experts from SonarSource were the first to discover this vulnerability, which has been registered as CVE-2022-30333, and which has been known since last June.
Rarbab also has a patch for version 6.12 which fixes this vulnerability in all RAR versions for Linux and Unix.