![]() If exploited, cyberattackers could use the vulnerability to execute code remotely. When partition maps are scanned to find objects within the file system, there is a lack of proper checking which can cause a read-out-of-bounds problem. ![]() The first vulnerability, CVE-2016-2335, is an out-of-bounds security flaw caused by the way 7-Zip handles Universal Disk Format (UDF) files. ![]() In a blog post, the security firm said two major vulnerabilities are contained within 7-Zip libraries which may also impact "security devices or antivirus products," among other software. Marcin Noga, a senior research engineer with Cisco's Security Intelligence and Research Group, Talos, recently discovered a number of issues with 7-Zip. Not only is 7-Zip used by thousands of consumers, but a number of technology companies and developers also implement the system in their own tools and software.Īs we've found with the recent ImageMagick flaw, if a backbone piece of software contains severe security vulnerabilities, the implications of the issue can go beyond just the software itself and impact any websites, systems or other solutions which rely on the vulnerable tool. Researchers have discovered that 7-Zip harbours a number of severe security flaws which has left developers which implement the software rushing to fix holes in their own products.ħ-Zip is an open-source file archiver and decompressor which is used in a range of utilities and applications which also includes AES-256 encryption options.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |