1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Flaw found in Lhasa makes for compression confession depression

Discussion in 'The Register' started by RSS, Apr 1, 2016.

  1. RSS

    RSS New Member Member

    Don't be a .LZA-boy – consider where you compress before this bug worms its way in

    Cisco's Talos team has found a vulnerability in the Lhasa LZH/LHA decompression tool and library, and it's a nasty one because it means the decompression process gives attackers the chance to put whatever code they want on your machine.…

    Continue reading...

Share This Page