dZeus
Content Type
Profiles
Forums
Events
Posts posted by dZeus
-
-
According to Secunia PSI (www.secunia.org), the latest version of nLite contains a vulnerability in the included 7-Zip Standalone Console Decompressor. Will this component be updated to include a version that doesn't have the known vulnerability?
0
nLite Security Advistory
in nLite
Posted
I'm not sure what the impact factor is of this vulnerability, details aren't disclosed on secunia.org. Just that "The vulnerability is reported in versions prior to version 4.5.7". My reasoning is that when it's easy to prevent running an unknown risk, why not do so (upgrade the 7-zip executable)?