@hackingne.ws on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Hacking News

hackingne.ws

did:plc:ys7v4hnzbd6un77f2olsx2q3

7-Zip's CVE-2025-0411 vulnerability bypassed Windows' Mark of the Web (MotW) security, allowing malicious code execution from extracted files. The flaw didn't propagate MotW flags from nested archives. A patch (7-Zip 24.09) was released November 30, 2024. Immediate updates are crucial.

2025-01-21T17:06:22.069Z