Forum Thread: Xceed Zip Compression Library 6.x

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Xceed Software
And, this specific program:
Xceed Zip Compression Library 6.x

This thread has been marked as locked.
RayG Xceed Zip Compression Library 6.x
Member 1st Nov, 2011 17:01
Ranking: 18
Posts: 16
User Since: 14th Feb, 2008
System Score: N/A
Location: UK
Hi,

This program (a DLL) has been flagged as insecure. I have not installed the product so I can only assume that it came supplied with another product. How do I find out what product it was supplied with?

I have been to the web site and it seems that the download there would only be a trial and I am not 100% certain that it would work with whatever is using it.

Thanks for any assistance.

--
Regards

RayG

Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 1st Nov, 2011 17:10
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK

FINDING A FILE PATH

From the DASHBOARD page click on SCAN RESULTS.

1. This will list all your programmes with a + to the left of each one.
2. Click the + sign next to the item that U want help with.
3. This will reveal the path under DETECTED INSTANCES.
4. Highlight it then copy (CTRL+C) then paste (CTRL+V)) that path back to the Forum.
OR THIS METHOD WHICH GIVES A HELPER MORE INFORMATION
4a Below DETECTED INSTANCES you will see You can double click this row for additional information & options>double click it>a box will appear>click TROUBLESHOOT REPORT>Now highlight the information revealed from START to END & copy it (CTRL+C) then post it to the Forum (CTRL+V)

The end result U post to the Forum should look like this:
---START---

Program Name:
Apple iTunes 10.x

Security State:
Insecure

Download Link:
http://appldnld.apple.com/iTunes10/061-9638.201103...

Instances Found:
C:\Program Files\iTunes\iTunes.exe, version: 10.1.2.17

Last System Scan (localtime):
3. Mar 2011, 16:47

Operating System:
Microsoft Windows XP Home Edition, Service Pack 3

---END---
Update 9 09:33 13/03/2011





--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0
RayG RE: Xceed Zip Compression Library 6.x
Member 1st Nov, 2011 17:28
Score: 18
Posts: 16
User Since: 14th Feb 2008
System Score: N/A
Location: UK
As requested:

Xceed Zip Compression Library 6.x 1 Insecure 6.0.6221.0 6.5.10316.0 Install Solution
Detected Instances:
C:\Windows\SysWOW64\XceedZip.dll, version 6.0.6221.0

Latest Version - patching one or more vulnerabilities:
6.5.10316.0





--
Regards

RayG
Was this reply relevant?
+0
-0
Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 1st Nov, 2011 18:08
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK

DELETING A FILE OR FOLDER USING PSI VERSION 2

To delete a vulnerable file or folder found by PSI try this:

1. Open PSI>Scan results.

2. Against the programme marked as vulnerable is a + sign to the left of it.

3. Click that & it will reveal DETECTED INSTANCES.

4. Below that are two yellow folders. Click the one WITHOUT a red dot.

5. That will open Windows Explorer & U will be able to see the vulnerable file or folder.
C:\Windows\SysWOW64\XceedZip.dll, version 6.0.6221.0

6. Right click on it & select delete.

7. Carry out a full PSI scan & all should be in order.



Update 1 20:49 09/03/2011


--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0
RayG RE: Xceed Zip Compression Library 6.x
Member 1st Nov, 2011 18:12
Score: 18
Posts: 16
User Since: 14th Feb 2008
System Score: N/A
Location: UK
Hmmm...

Not sure why you want me to delete the file - that will stop whatever is using it from working.

I want to either update the file or locate the product that is using it so it can be updated.

Your solution does not answer that question!

--
Regards

RayG
Was this reply relevant?
+2
-0
Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 1st Nov, 2011 19:09
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Up to U. That removes the vulnerability which is the sole purpose of PSI & this Forum.

U could have a long haul on your hands finding the parent programme if U are suggesting a currently installed programme on your PC other than Xceed has embedded some of Xceed's files & dumped it in WOW.

Removing it is not that drastic - if in future an installed programme/feature "calls on it" to work U will know the culprit from the error message it will produce then fix it.

If all your installed programmes are fully up to date it remains a vulnerability regardless which U can either delete as suggested or create an ignore rule.

There is also the possibility that it is a "left behind" file from a previously installed programme & requires deletion anyway.










--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+3
-0
alh2017 RE: Xceed Zip Compression Library 6.x
Member 1st Nov, 2011 20:02
Score: 1
Posts: 1
User Since: 1st Nov 2011
System Score: N/A
Location: US
On my system it belonged to vipre premium
Was this reply relevant?
+1
-0
Kambanakis RE: Xceed Zip Compression Library 6.x
Member 1st Nov, 2011 21:40
Score: 9
Posts: 10
User Since: 5th Dec 2008
System Score: N/A
Location: DE
I`got the same Problem. Here it is part of Driver Genius Pro 10.
If I delete the file, I cant start the program!
If I follow the Install Solution, I come to a Website, which offers me a download on $570
.
So.. it`s too expensiv, but what can I do?
Was this reply relevant?
+0
-0
Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 1st Nov, 2011 21:59
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
The vulnerability has caused a stir on the Forum which we have had before with other like programmes.

Secunia are talking about the main Xceed programme.

IN THE PAST THEY HAVE CHANGED THEIR DETECTION RULES TO CATER FOR MEMBERS WHO ARE ONLY USING SOME FILES THAT ARE RELIANT IN PART OF A MAIN AFFECTED PROGRAMME

It could be that the programmes affected on the various posts to date (Driver Genius Pro 10 & Vipre Premium) are not vulnerable.

Better to wait for Secunia Support to comment before looking for your own solution(s). They may change the detection rule & all will be normal again.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+2
-0
Kambanakis RE: Xceed Zip Compression Library 6.x
Member 2nd Nov, 2011 00:23
Score: 9
Posts: 10
User Since: 5th Dec 2008
System Score: N/A
Location: DE
Dear Maurice,
I thank you very much!
I`ll do so.
WRK
Was this reply relevant?
+0
-0
Shmo RE: Xceed Zip Compression Library 6.x
Member 2nd Nov, 2011 08:44
Score: 1
Posts: 2
User Since: 9th Jan 2011
System Score: N/A
Location: UK
Was this reply relevant?
+1
-0
SAIW RE: Xceed Zip Compression Library 6.x
Member 2nd Nov, 2011 13:44
Score: 3
Posts: 2
User Since: 30th Jan 2009
System Score: N/A
Location: N/A
Maurice,

Thanks for the advice. I too am now seeing this flagging of XceedZip.dll and because I see other members identifying this with Vipre Premium, I have it installed as well, I'll wait & see what happens with Secunia but, in the interim, will ask GFI (Vipre producers) a few questions. If I find anything useful I'll post it here.
Was this reply relevant?
+1
-0
SAIW RE: Xceed Zip Compression Library 6.x
Member 2nd Nov, 2011 18:46
Score: 3
Posts: 2
User Since: 30th Jan 2009
System Score: N/A
Location: N/A
Confirmed that Vipre does use Xceedzip.dll. They are to produce a hotfix in the 'near future.'
Was this reply relevant?
+2
-0
snakeman48 RE: Xceed Zip Compression Library 6.x
Member 3rd Nov, 2011 02:47
Score: 0
Posts: 2
User Since: 26th Nov 2008
System Score: N/A
Location: US
on 2nd Nov, 2011 18:46, SAIW wrote:
Confirmed that Vipre does use Xceedzip.dll. They are to produce a hotfix in the 'near future.'


Thanks for the info.
I too have Viper Premium, and PSI flagged the DLL tonight on my system.
So I will wait for Viper's hot fix.
Was this reply relevant?
+0
-0
Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 3rd Nov, 2011 11:23
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Try a full PSI rescan. I believe the various programmes should now be showing as fully patched.

I can only assume Secunia have cfhanged a detection rule.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0
Shmo RE: Xceed Zip Compression Library 6.x
Member 3rd Nov, 2011 14:14
Score: 1
Posts: 2
User Since: 9th Jan 2011
System Score: N/A
Location: UK
Just done a full re-scan and every-thing's OK now.

Thanks :)
Was this reply relevant?
+0
-0
madrebel RE: Xceed Zip Compression Library 6.x
Member 9th Nov, 2011 12:49
Score: 0
Posts: 2
User Since: 9th Nov 2011
System Score: N/A
Location: US
I have the same file, but it seems that it's not associated to any specific program.


Instances Found:
C:\Program Files\Download Manager\XceedZip.dll, version: 6.0.5363.0

Please advise
Was this reply relevant?
+0
-0
Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 9th Nov, 2011 13:42
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
It is in Program Files therefore it is a programme in its own right.

If it is not in Control Panel>add/remove for U to uninstall it then just delete the entry.


DELETING A FILE OR FOLDER USING PSI VERSION 2

To delete a vulnerable file or folder found by PSI try this:

1. Open PSI>Scan results.

2. Against the programme marked as vulnerable is a + sign to the left of it.

3. Click that & it will reveal DETECTED INSTANCES.

4. Below that are two yellow folders. Click the one WITHOUT a red dot.

5. That will open Windows Explorer & U will be able to see the vulnerable file or folder.
C:\Program Files\Download Manager\XceedZip.dll, version: 6.0.5363.0

6. Right click on it & select delete.

7. Carry out a full PSI scan & all should be in order.



Update 1 20:49 09/03/2011


--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0
madrebel RE: Xceed Zip Compression Library 6.x
Member 9th Nov, 2011 21:13
Score: 0
Posts: 2
User Since: 9th Nov 2011
System Score: N/A
Location: US
Thanks, this is part of an IGN download program.Once I started up the program it auto updated. This thread was helpful.
Was this reply relevant?
+0
-0
Maurice Joyce RE: Xceed Zip Compression Library 6.x
Handling Contributor 9th Nov, 2011 21:16
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Good News - Pleased U are all fixed up.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+0
-0

This thread has been marked as locked.