Notification

Icon
Error

7-Zip Arbitrary Code Execution Vulnerability Check

Posted: Friday, May 4, 2018 2:13:36 PM(UTC)
Esben.D

Esben.D

Member Administration Original PosterPosts: 1,982
6
Like
Update 7th of May, posted a different report that is immune to conversion errors: due to the high variance in the formatting of 7-zip version numbers our previous report could cause conversion errors in certain installations. The new report lists all computers that don't have the current latest version of 7-zip installed (18.05), but will need to be adjusted when newer versions are released.

This report lists all computers which have an installation of a 7-Zip version lower than 18.05 and are vulnerable to the 7-Zip Arbitrary Code Execution Vulnerability. If vulnerable assets are found, you can patch them by using the steps in the 7-Zip Arbitrary Code Execution Vulnerability Announcement.

To run this report, do the following:
  • Open the report builder in the Lansweeper web console under Reports/Create New Report.
  • Paste the SQL query (report) found below at the bottom of the page, replacing the default SQL query.
  • Left-click somewhere in the upper section of the page so the query applies.
  • Give the report a title.
  • Hit the Save & Run button to save the report. Export options are listed on the left.
Code:
Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tblAssets.Username,
tblAssets.Userdomain,
Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon,
tblAssets.IPAddress,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tsysOS.OSname As OS,
tblAssets.SP,
tblAssets.Lastseen,
tblAssets.Lasttried,
tblSoftwareUni.softwareName As Software,
tblSoftware.softwareVersion As Version,
tblSoftwareUni.SoftwarePublisher As Publisher,
tblSoftware.Lastchanged
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Inner Join tblSoftware On tblAssets.AssetID = tblSoftware.AssetID
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblSoftware.softID
Left Join tsysOS On tsysOS.OScode = tblAssets.OScode
Where tblSoftwareUni.softwareName Like '%7-Zip%' And
tblSoftware.softwareVersion Not Like '%18.05%' And tblState.Statename =
'Active'
Order By tblAssets.Domain,
tblAssets.AssetName,
Software
Esben.D
#1Esben.D Member Administration Original PosterPosts: 1,982  
posted: 5/4/2018 2:22:00 PM(UTC)
If you have any questions regarding the report, please contact us via email at support@lansweeper.com

Active Discussions

Lansweeper LsAgent for Windows command line options?
by  Brandon   Go to last post Go to first unread
Last post: Yesterday at 4:49:17 PM(UTC)
Lansweeper EmailLog.txt file become big in size
by  Ary Ahmed  
Go to last post Go to first unread
Last post: 4/18/2021 10:56:58 AM(UTC)
Lansweeper LsAgent.ini
by  Orion Poplawski   Go to last post Go to first unread
Last post: 4/17/2021 4:49:12 PM(UTC)
Lansweeper LSagent force a scan
by  Orion Poplawski  
Go to last post Go to first unread
Last post: 4/17/2021 4:46:49 PM(UTC)
Lansweeper MS Edge Chromium LanSweeper Extension development
by  steveb   Go to last post Go to first unread
Last post: 4/16/2021 10:59:56 PM(UTC)
Lansweeper Office 365 v2 Scanning Error
by  DJX  
Go to last post Go to first unread
Last post: 4/16/2021 7:37:57 PM(UTC)
Lansweeper Database size growing too large
by  JTempleton   Go to last post Go to first unread
Last post: 4/16/2021 5:19:22 PM(UTC)
Lansweeper Limit New Ticket Notifications
by  Jeff WP  
Go to last post Go to first unread
Last post: 4/16/2021 4:40:43 PM(UTC)