Find All Computers Vulnerable to the 7-Zip Exploit on your Network
7-Zip versions prior to version 18.05 are vulnerable to the arbitrary code execution vulnerability. To learn more about this vulnerability, you can head over to the 7-Zip Vulnerability blog post.
To protect your network and business against this and other vulnerabilities, it is important to get a complete list of all devices that might be vulnerable. Once you have a complete list of affected devices you can start rolling out updates to fix the issue. Find and detect all machines which have an outdated 7-Zip version and are at risk. Resolve your exposure as soon as possible with this audit.
7-Zip Arbitrary Code Execution Query
Select Top 1000000 tblAssets.AssetID, tblAssets.AssetName, tblAssets.Domain, tblAssets.Username, tblAssets.Userdomain, Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon, tblAssets.IPAddress, tsysIPLocations.IPLocation, tblAssetCustom.Manufacturer, tblAssetCustom.Model, tsysOS.OSname As OS, tblAssets.SP, tblAssets.Lastseen, tblAssets.Lasttried, tblSoftwareUni.softwareName As Software, tblSoftware.softwareVersion As Version, tblSoftwareUni.SoftwarePublisher As Publisher, tblSoftware.Lastchanged From tblAssets Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype Inner Join tsysIPLocations On tsysIPLocations.LocationID = tblAssets.LocationID Inner Join tblState On tblState.State = tblAssetCustom.State Inner Join tblSoftware On tblAssets.AssetID = tblSoftware.AssetID Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblSoftware.softID Left Join tsysOS On tsysOS.OScode = tblAssets.OScode Where tblSoftwareUni.softwareName Like '%7-Zip%' And tblSoftware.softwareVersion Not Like '%18.05%' And tblState.Statename = 'Active' Order By tblAssets.Domain, tblAssets.AssetName, Software