Ancestors

Written by neatchee on 2024-12-30 at 22:01

🚨 SECURITY PSA - 7ZIP VULN🚨

Update your 7zip, folks

https://cybersecuritynews.com/7-zip-vulnerability-arbitrary-code/

[#]cybersecurity #zeroday #7zip #malware #security #it #infosec

=> More informations about this toot | More toots from neatchee@urusai.social

Written by Ariel on 2024-12-30 at 22:01

@neatchee again?!

=> More informations about this toot | More toots from arichtman@eigenmagic.net

Written by Not Simon 🐐 on 2024-12-30 at 22:07

@arichtman @neatchee no. This was proven to be false. there's a whole conversation about it on Mastodon. https://infosec.exchange/@obivan/113741898038858268

=> More informations about this toot | More toots from screaminggoat@infosec.exchange

Written by neatchee on 2024-12-30 at 22:11

@screaminggoat @arichtman ah interesting. I'll update the link to point at the actual CVE

=> More informations about this toot | More toots from neatchee@urusai.social

Toot

Written by Not Simon 🐐 on 2024-12-30 at 22:14

@neatchee oh this is the one from last month. My mistake. That one is legit: CVE-2024-11477 (7.8 high)

There was some controversy this morning when someone dropped an alleged zero-day poc exploit.

=> More informations about this toot | More toots from screaminggoat@infosec.exchange

Descendants

Written by neatchee on 2024-12-30 at 22:16

@screaminggoat heh yeah, that was supposedly utilizing this CVE which is what led me to it.

I would normally hold off on posting something this old but 7z has no self update mechanism so people tend to run old versions :/

=> More informations about this toot | More toots from neatchee@urusai.social