This blog post was authored by Marcin Noga of Cisco Talos. In 2016 Talos released an advisory for CVE-2016-2334, which was a remote code execution vulnerability affecting certain versions of 7zip. In this blog post we will walk through the process of weaponizing this vulnerability and creating a working exploit that leverages it on Windows 7 x86. The vulnerability manifests during the decompression of a compressed file located on an HFS+ filesystem. It is present within the CHandler::ExtractZlibFile function.”]
Source: https://blog.talosintelligence.com/2017/11/exploiting-cve-2016-2334.html