Intrusion Prevention

7-Zip.7Z.File.PPMd.Properties.Parsing.Integer.Underflow

Description

This indicates an attack attempt to exploit an Integer Underflow Vulnerability in Igor Pavlov 7-Zip.
The vulnerability is due to a lack of proper input validation when parsing 7Z files. nA remote attacker can exploit the vulnerability by enticing a victim to open a maliciously crafted file. Successfully exploiting the vulnerability could result in remote code execution in the context of the application.

Affected Products

Igor Pavlov 7-Zip prior to 23.00 BETA

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://sourceforge.net/p/sevenzip/discussion/45797/thread/713c8a8269/

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2024-02-05	26.727	Modified	Default_action:pass:drop
2024-01-24	26.721	New

ID	54578
Created	Jan 16, 2024
Updated	Jan 24, 2024
CVE ID
Risk
Exploit Prediction Score	38.38%
Default Action	drop
Active
Affected OS	Windows
Affected App	Other
Profile Type	BufferErrors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

7-Zip.7Z.File.PPMd.Properties.Parsing.Integer.Underflow

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

7-Zip.7Z.File.PPMd.Properties.Parsing.Integer.Underflow

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center