Archive Security
The latest Archive Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
High-Severity less Flaw (CVE-2024-32487) Turns Malicious Filenames into Code Execution on Linux
In mid-April 2024, security researchers disclosed a critical vulnerability in less, the nearly ubiquitous command-line pager found on Linux and Unix-like systems. Tracked as CVE-2024-32487, the flaw...
7-Zip 25.01 Patches Critical Zip Symlink Flaws Allowing Arbitrary File Overwrite
The recent 7-Zip 25.01 update addresses two critical security vulnerabilities that could allow malicious ZIP archives to escape their extraction folders and overwrite files in arbitrary locations on...
NanaZIP 6 Preview Brings Windows 11 XAML Overhaul and a Risky Auto-Extract Feature
NanaZIP’s latest preview release, version 6.0, tears up the 7-Zip fork’s playbook by swapping its Zstandard decoder for a hardened alternative while simultaneously introducing a feature that...
Windows File Explorer NTLM Leak: CVE-2025-50154 Exposes Credentials in Stealthy Attacks
A single unassuming ZIP archive can now become a weapon to steal Windows credentials, thanks to a newly patched flaw in Windows File Explorer. Microsoft's March 11, 2025 Patch Tuesday update fixed a...