![]() Open the 7-Zip installation directory or folder on the system.Since it is using the included Help file, one way of dealing with the issue is to delete the Help file. Users of the application may use the following workaround to mitigate the vulnerability on their devices. The last update of the application dates back to the release of 7-Zip in December 2021 It is unclear if and when 7-Zip will address the issue. The page provides technical information and a short demonstration video of the exploit. Vulnerability details have been published on GitHub. Multiple researchers, who analyzed the vulnerability, have reported that no privilege escalation can occur. ![]() Attackers need to drag and drop files with the 7z extension on to the Help > Contents area in the 7-Zip interface. ![]() ![]() Filed under CVE-2022-29072, the vulnerability is using the included 7-Zip Help file, 7-zip.chm, for the exploit. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |