This can affect you, even if you are not trying to open an .ace file, as the vulnerability can be exploited with a specially crafted .ace file, renamed to .rar. WinRAR's fix for the problem was to completely drop support for the ACE format, since they don't have access to the UNACEV2.DLL source code, to patch it.
https://threatpost.c...illion-users/142080/If you are using an older version of WinRAR and don't want to pay for an upgrade to the latest beta version, just yet, you can fix the problem, removing the vulnerable code yourself, by deleting the UNACEV2.DLL file from the WinRAR program folder. WinRAR will still work just fine without it, but won't be able to extract .ace files.