Bobcares
Client Area
Emergency Support
Latest | Server Management

CVE 2022 29072 exploit | 2 Quick fixes

by | Apr 22, 2022

CVE 2022 29072 exploit leaving your system vulnerable. Our experts are here with two quick fixes for this issue. 

At Bobcares, we offer solutions for every query, big and small, as a part of our Server Management Services.

Let’s take a look at how our Support Team is ready to help customers with CVE 2022 29072 vulnerability.

What is CVE 2022 29072 exploit?

7-zip is a free open-source compression manager. It’s useful for compressing huge files for both personal and commercial use. Unfortunately, a recent security vulnerability, namely CVE-2022-29072 has made 7-zip vulnerable to hackers. In other words, the vulnerability allows hackers to escalate privileges. The vulnerability is present in all current versions of 21.07.

CVE 2022 29072 exploit

 

Although there is no patch yet for the vulnerability, our Support Team has come together with a fix for this specific issue. It involves deleting the 7-zip.chm file in the 7-Zip installation directory.

About CVE 2022 29072 vulnerability

Interestingly, the seems to vulnerably affect the Windows version of 7-zip more. The glitch allows privilege escalation as well as command execution when a file with .7z extension gets dragged to the Contents section under Help.

In fact, the zero-day in the 7-zip software is due to misconfiguration of 7z.dll and heap overflow. After installation, the help file works via the Windows HTLM Helper file. However, a child process appears under the 7zFM.exe process after the command injection.

At this point fuzzing process takes place. The overflow vulnerability and wrong authorization results in calling the command prompt again via administrator mode. Furthermore, NT AUTHORITY\SYSTEM privilege is accessible now due to the command “psexec -s cmd.exe -nobanner”.

If you are using 7-zip, our Support Team offers two ways to protect yourself from CVE 2022 29072 being exploited:

  • Delete the 7-zip.chm file to close the vulnerability.
  • Allow only read and run permissions for the 7-zip program for all users.

Until a patch is released our Support Techs recommend either one of the above fixes.

[Need assistance with another query? We are available 24/7.]

Conclusion

In brief, our skilled Support Engineers at Bobcares demonstrated how to deal with CVE 2022 29072 exploit.

PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

GET STARTED

Related posts:

  1. Sudo vulnerability CVE -2019-18634 – Avoid hacker gain server access
  2. ThemeGrill WordPress Vulnerability – How we tackle it
  3. How To Protect WordPress Site from the Genericons XSS Vulnerability
  4. About http/2 Smuggling Vulnerability in Cloudflare

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *

server management

Spend time on your business, not on your servers.

TALK TO US

Or click here to learn more.

Related Articles

  1. Sudo vulnerability CVE -2019-18634 – Avoid hacker gain server access
  2. ThemeGrill WordPress Vulnerability – How we tackle it
  3. How To Protect WordPress Site from the Genericons XSS Vulnerability
  4. About http/2 Smuggling Vulnerability in Cloudflare

Never again lose customers to poor
server speed! Let us help you.

GET STARTED