One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 8646815 |
| Date de publication | 2025-02-04 17:58:00 (vue: 2025-02-04 14:08:01) |
| Titre | Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections |
| Texte | A recently patched security vulnerability in the 7-Zip archiver tool was exploited in the wild to deliver the SmokeLoader malware.
The flaw, CVE-2025-0411 (CVSS score: 7.0), allows remote attackers to circumvent mark-of-the-web (MotW) protections and execute arbitrary code in the context of the current user. It was addressed by 7-Zip in November 2024 with version 24.09.
"The vulnerability was
A recently patched security vulnerability in the 7-Zip archiver tool was exploited in the wild to deliver the SmokeLoader malware. The flaw, CVE-2025-0411 (CVSS score: 7.0), allows remote attackers to circumvent mark-of-the-web (MotW) protections and execute arbitrary code in the context of the current user. It was addressed by 7-Zip in November 2024 with version 24.09. "The vulnerability was |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 0411 2024 2025 addressed allows arbitrary archiver attackers bypass circumvent code context current cve cvss cybercrime deliver execute exploited exploiting flaw groups malware mark motw november patched protections recently remote russian score: security smokeloader tool user version vulnerability web wild windows zip |
| Tags | Malware Tool Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.