RARLAB WinRAR could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the mshtml.dll implementation. By using man-in-the-middle attack techniques, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Update WinRAR to version 6.02.
Block script-based executions on all endpoints / Internet systems.
Management of third-party software must be controlled through policies and managing the risk associated with external applications.