Check: 2016-A-0139
Windows 2012 IAVM:
2016-A-0139
(in version v1 r30)
Title
Multiple Remote Code Execution Vulnerabilities in 7-Zip (Cat II impact)
Discussion
7-Zip has addressed multiple vulnerabilities in various versions of 7-Zip. 7-Zip is an open-source file archiving application. To exploit these vulnerabilities, an attacker would entice a user to open a malicious file with the affected application via email sent. If successfully exploited, these vulnerabilities would allow an attacker to execute arbitrary code in the context of the user running the affected application.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-68803
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |