7Zip installer vulnerable to DLL hijacking
A free file archiver for extremely high compression
Brought to you by:
ipavlov
Menu
▾
▴
2 Attachments
#1654 7Zip installer vulnerable to DLL hijacking
The 7-zip installer is vulnerable to DLL hijacking attacks, similar to those described here: https://textplain.wordpress.com/2015/12/18/dll-hijacking-just-wont-die/
For instance, a planted trojan DLL named "netutils.dll" is loaded and executed by the installer as it completes running on Windows 10.
