#1
|
|||
|
|||
Does 7zip UDF vulnerability affect JDownloader?
I see that JDownloader uses 7zip-JBindings, which is based upon 7zip 9.20 which is affected by a dangerous vulnerability regarding UDF format.
Is JDownloader vulnerable? Automatically unpacking a prepared .udf file that has been renamed to .zip may cause an infection. Please tell me that I am wrong. **External links are only visible to Support Staff****External links are only visible to Support Staff** **External links are only visible to Support Staff****External links are only visible to Support Staff** Fixed in 7-zip 16.00: **External links are only visible to Support Staff****External links are only visible to Support Staff** |
#2
|
||||
|
||||
No it does not, because JDownloader does not support/use/provide UDF Extraction
__________________
JD-Dev & Server-Admin |
#3
|
||||
|
||||
Any Idea how to create an udf File? then I will check against your thought about ".udf renamed to xy" and will see what happens.
__________________
JD-Dev & Server-Admin |
#4
|
|||
|
|||
Thx. I ask because yesterday the first spam with udf renamed to zip hit my mailbox.
|
Thread Tools | |
Display Modes | |
|
|