No complex exploit was needed; the Windows Startup folder handled the execution.
The flaw existed in unacev2.dll , a third-party library WinRAR used to unpack files. Path Traversal: Attackers could bypass folder restrictions. 22793.rar
When a user opens "22793.rar" (or similar ACE-based exploits): No complex exploit was needed; the Windows Startup