Qhov tsis zoo (CVE-7-2022) tau raug txheeb xyuas nyob rau hauv cov ntaub ntawv pub dawb 29072-Zip, uas tso cai rau kev txiav txim siab kom ua tiav nrog SYSTEM cov cai los ntawm kev txav cov ntaub ntawv tshwj xeeb tsim nrog .7z txuas ntxiv mus rau thaj chaw nrog cov lus pom thaum qhib cov ntawv qhia zaub mov "Pab>Cov ntsiab lus". Qhov teeb meem tsuas yog tshwm sim ntawm lub Windows platform thiab yog tshwm sim los ntawm kev sib xyaw ntawm 7z.dll misconfiguration thiab tsis muaj dej txaus.
Nws yog ib qho tseem ceeb uas tom qab tau ceeb toom txog qhov teeb meem, 7-Zip developers tsis lees paub qhov muaj qhov tsis zoo thiab hais tias lub hauv paus ntawm qhov tsis zoo yog Microsoft HTML Helper txheej txheem (hh.exe), uas khiav cov cai thaum cov ntaub ntawv tsiv mus. Tus kws tshawb fawb uas txheeb xyuas qhov tsis zoo ntseeg tias hh.exe tsuas yog cuam tshuam ncaj qha los ntawm kev siv qhov tsis zoo, thiab cov lus txib tau teev tseg hauv qhov kev siv tau pib hauv 7zFM.exe raws li tus txheej txheem menyuam yaus. Cov laj thawj rau qhov muaj peev xwm ua rau muaj kev tawm tsam los ntawm kev txhaj tshuaj yog hais tias yog qhov tsis txaus nyob rau hauv cov txheej txheem 7zFM.exe thiab qhov teeb tsa tsis raug ntawm cov cai rau 7z.dll lub tsev qiv ntawv.
Ua piv txwv, ib qho piv txwv pab cov ntaub ntawv uas khiav "cmd.exe" yog qhia. Nws tseem tau tshaj tawm tias qhov kev siv nyiaj yuav raug npaj uas yuav tso cai rau ib tus kom tau txais SYSTEM cov cai hauv Windows, tab sis nws cov cai tau npaj yuav luam tawm tom qab tso tawm 7-Zip hloov tshiab uas tshem tawm qhov tsis zoo. Txij li thaum cov kev txhim kho tseem tsis tau luam tawm, raws li kev ua haujlwm rau kev tiv thaiv, nws tau thov kom txwv tsis pub 7-zip program nkag mus nyeem thiab khiav nkaus xwb.
Tau qhov twg los: opennet.ru