Objective

• Find systems running 7-zip.
• Identify the running version.
• Determine if the running version has known vulnerabilities.

Nessus

You can use Nessus to detect 7-Zip installations on windows:

• Microsoft Windows Installed Software Enumeration (credentialed check) (20811)
• SNMP Query Installed Software Disclosure (19763)

Search for the string: 7-Zip

The following software are installed on the remote host :

7-Zip <version>

You can use Nessus to detect 7-Zip installations on Linux:

• Software Enumeration (SSH) (22869)
• SNMP Query Installed Software Disclosure (19763)

Search for the string: 7zip

On 20160516 Tenable released 2 new plugins for 7-Zip:

• 7-Zip Installed (91231)
• 7-Zip < 16.00 Multiple Vulnerabilities (91230)

References

• 7-Zip gets an update to fix major security vulnerabilities
• MULTIPLE 7-ZIP VULNERABILITIES DISCOVERED BY TALOS
• Severe 7-Zip vulnerabilities cause top security, software tools patch panic
• CORRUPTION, CODE EXECUTION VULNERABILITIES PATCHED IN OPEN SOURCE ARCHIVER 7-ZIP
• Vulners
• 7-Zip website
• 7-Zip Change Log
• https://sourceforge.net/p/sevenzip/discussion/45797/thread/a8fd6078/