TALOS-CAN-0094, Out-of-Bounds Read Vulnerability, Īn out-of-bounds read vulnerability exists in the way 7-Zip handles Universal Disk Format (UDF) files. Users may be surprised to discover just how many products and appliances are affected. 7-Zip is supported on all major platforms, and is one of the most popular archive utilities in-use today. This can be of particular concern, for example, when it comes to security devices or antivirus products. These type of vulnerabilities are especially concerning since vendors may not be aware they are using the affected libraries. Recently Cisco Talos has discovered multiple exploitable vulnerabilities in 7-Zip. Update : Related advisories for the 7-Zip issues covered in this blog can be found here:ħ-Zip is an open-source file archiving application which features optional AES-256 encryption, support for large files, and the ability to use “ any compression, conversion or encryption method”. ![]() 7-Zip vulnerabilities were discovered by Marcin Noga.īlog post was authored by Marcin Noga, and Jaeson Schultz.
0 Comments
Leave a Reply. |