ACE (compressed file format)

ACE
Filename extension	.ace
Internet media type	application/x-ace-compressed
Developed by	e-merge GmbH
Type of format	data compression

In computing, ACE is a proprietary data compression archive file format developed by Marcel Lemke, and later bought by e-merge GmbH. The peak of its popularity was 1999–2001, when it provided slightly better compression rates than RAR, which has since become more popular.

WinAce[edit]

WinAce, maintained by e-merge GmbH, is used to compress and decompress ACE files under Microsoft Windows. When installed, it lets the user choose between paying for a registration or installing WhenU SaveNow adware. e-merge GmbH also produces a Commandline ACE for DOS; and a freeware command-line interface decompression tool for Linux (i386) and macOS called "Unace". e-merge GmbH also provides several libraries for developers, including a freeware decompression DLL called "unace.dll". Some third-party archivers can read the format using this DLL. None of the above is open source free software.

On November 23, 2007, version 2.69 of WinACE was released, including a less-intrusive adware application, MeMedia AdVantage, which replaces WhenU. No other major changes are in this release.

Other implementations[edit]

An older version of an Unace 1.2b is free software and licensed under the GPL by the author Marcel Lemke, but it cannot extract ACE archives from version 2.0 and newer.^[1]

A newer version of Unace 2.5 that supports ACE 2.0 archives is available under a restrictive source available license, also by Marcel Lemke.^[2]

An older, independent C implementation is part of XAD-Master libxad by Dirk Stöcker. It is limited to unpacking ACE 1.0 archives.

Since 2017, there is a BSD licensed python module and CLI utility by Daniel Roethlisberger, that supports unpacking of ACE 2.0 format archives.^[3]

Third-party support[edit]

Packing of ACE files is licensed as proprietary information and only available through WinACE, while unpacking of ACE files is supported by a number of third-party archivers. However, virtually all of them (the ones that support ACE 2.x format) do this by using the proprietary "unace.dll" from e-merge GmbH.

Use for malware distribution[edit]

Since at least 2015, ACE archives have been used to deliver malware to victims by e-mail. This tactic was viable because popular archiving software was able to uncompress ACE archives, but support for the ACE format in security products such as mail filters, web content filters, and anti-virus software was generally weak.^[4]^[5]^[6]

Security vulnerabilities[edit]

In February 2019 several major security vulnerabilities were found in the unacev2.dll library which is used by WinRAR and other archiving products. Since WinACE support is discontinued, users are advised against opening ACE archives in WinRAR and possibly other products using this library.^[7] WinRAR stopped supporting ACE as of version 5.70, and similar products are following suit.

External links[edit]

References[edit]

^ "unace: extract, test and view .ace archives". Debian.
^ "unace-nonfree: extract, test and view .ace archives (non-free version)". Debian.
^ "acefile: Read/test/extract ACE 1.0 and 2.0 archives in pure python". PyPI. Retrieved 2019-03-09.
^ "Malware sent in .ace format". Frank Leonhardt's blog. 5 October 2015. Retrieved 2019-03-09.
^ "Spammers discover the 7z archive format for spreading ransomware". IBM X-Force Exchange. Retrieved 2019-03-09.
^ "How to deal with .ACE malware files?". Marc Rivero López' blog. 24 January 2017. Retrieved 2019-03-09.^{[permanent dead link]}
^ "Extracting a 19 Year Old Code Execution from WinRAR". Check Point Research. 2019-02-20. Retrieved 2019-02-26.

[1] "unace: extract, test and view .ace archives". Debian.

[2] "unace-nonfree: extract, test and view .ace archives (non-free version)". Debian.

[3] "acefile: Read/test/extract ACE 1.0 and 2.0 archives in pure python". PyPI. Retrieved 2019-03-09.

[4] "Malware sent in .ace format". Frank Leonhardt's blog. 5 October 2015. Retrieved 2019-03-09.

[5] "Spammers discover the 7z archive format for spreading ransomware". IBM X-Force Exchange. Retrieved 2019-03-09.

[6] "How to deal with .ACE malware files?". Marc Rivero López' blog. 24 January 2017. Retrieved 2019-03-09.^{[permanent dead link]}

[7] "Extracting a 19 Year Old Code Execution from WinRAR". Check Point Research. 2019-02-20. Retrieved 2019-02-26.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

v t e Archive formats
Archiving only	ar cpio shar tar LBR WAD WARC
Compression only	Brotli bzip2 compress gzip Zopfli LZMA LZ4 lzip lzop SQ xz Zstandard
Archiving and compression	7z ACE ARC ARJ B1 Cabinet cfs cpt dar DGCA .dmg .egg kgb LHA LZX MPQ PEA RAR rzip sit sitx SQX UDA Xar zoo ZIP ZPAQ
Software packaging and distribution	apk App APPX deb HAP ipa JAR WAR Java RAR EAR MSI MSIX Package (macOS) RPM XAP XBAP
Document packaging and distribution	OEB Package Format OEBPS Container Format Open Packaging Conventions PAQ
Comparison List Category