Posts made by OLLI_S

I installed an update for Arc Client and now the displayed version number should be altered.
In the application the displayed version number is 1.1.0.18716.
In VulnDetect the displayed version number is Please report version.

I copied the EXE also to the folder E:\VulnDetect_Special_Files
Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     E:\Arc\Arc.exe
Product Name:           Arc
Internal Name:          Arc.exe
Original Filename:      Arc.exe

File Description:       Arc Update
Company:                Perfect World Entertainment Inc
Legal Copyright:        Copyright(C)2010. Perfect World Entertainment Inc.All rights reserved.
Legal Trademarks:       
Comments:               

File Version String:    1.0.0.1
File Version:           1.0.0.1
Product Version String: 1.0.0.1
Product Version:        1.0.0.1

KeePassXC is detected correctly on my system, but no app-icon is shown.
So here is the app-icon in ICO format:

@Tom
You store very sensitive data (the complete list of application that a user has installed).
Families will have the option to store multiple computers in one account.
And business users also have multiple computers and here a leak of information could be critical.

So please implement Two Factor Authentication (2FA) by allowing users to log on with a Temporal One Time Password (TOTP).

And please don't forget to add 2FA Recovery Codes (codes that users get when they set up 2FA and that can be used instead of 2FA).

I installed an update for Arc Client and now the displayed version number should be altered.
In the application the displayed version number is 1.1.0.18715.
In VulnDetect the displayed version number is Please report version.

I copied the EXE also to the folder E:\VulnDetect_Special_Files
Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     E:\Arc\Arc.exe
Product Name:           Arc
Internal Name:          Arc.exe
Original Filename:      Arc.exe

File Description:       Arc Update
Company:                Perfect World Entertainment Inc
Legal Copyright:        Copyright(C)2010. Perfect World Entertainment Inc.All rights reserved.
Legal Trademarks:       
Comments:               

File Version String:    1.0.0.1
File Version:           1.0.0.1
Product Version String: 1.0.0.1
Product Version:        1.0.0.1

The open source social network Openspace was forced to change the name.
The new name is now Okuna but the icon is the same.

Please rename Openspace-desktop to Desktop client for Okuna (as seen in the exe).
If you like to keep Okuna-desktop then write it with a capital D (Okuna-Desktop) and maybe you remove the "-" (Okuna Desktop).

There is also a new version available:

File name and path:     D:\PortableApps\PortableApps\_Okuna_Desktop_Client\okuna-desktop.exe
Product Name:           okuna-desktop
Internal Name:          okuna-desktop
Original Filename:      okuna-desktop.exe

File Description:       Desktop client for Okuna
Company:                Sophie Tauchert
Legal Copyright:        Copyright © 2019 Sophie Tauchert
Legal Trademarks:       
Comments:               

File Version String:    0.0.49-2
File Version:           0.0.49.0
Product Version String: 0.0.49-2
Product Version:        0.0.49.0

I installed an update for Wolcen: Lords of Mayhem and now the displayed version number should be altered.
In the game the displayed version number is 1.1.6.0 Beta.
In VulnDetect the displayed version number is 3.8.6.53.

I copied the EXE also to the folder E:\VulnDetect_Special_Files
Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     E:\Steam\SteamApps\common\Wolcen\win_x64\Wolcen.exe
Product Name:           Wolcen: Lords of Mayhem
Internal Name:          
Original Filename:      

File Description:       
Company:                Wolcen Studio
Legal Copyright:        (C) 2015 Wolcen Studio
Legal Trademarks:       
Comments:               

File Version String:    3,8,6,53
File Version:           3.8.6.53
Product Version String: 3.8.6.53
Product Version:        3.0.0.0

The version number 1.1.0.18710 is now displayed correctly.
Thank you for fixing this!

The version number 2.04 Beta is now displayed correctly.
Thank you for fixing this!

The version number 1.1.5.0 Beta is now displayed correctly.
Thank you for fixing this!

I have two applications where VulnDetect asks me to report the correct version number:

• Arc Client (here the version number is Please report version)
• Xinorbis (here the version number is Unknown, please report)

In my opinion these two texts should be unique.
You should show for both files the version number Unknown, please report.

I installed an update for Arc Client and now the displayed version number should be altered.
In the application the displayed version number is 1.1.0.18712.
In VulnDetect the displayed version number is Please report version.

I copied the EXE also to the folder E:\VulnDetect_Special_Files
Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     E:\Arc\Arc.exe
Product Name:           Arc
Internal Name:          Arc.exe
Original Filename:      Arc.exe

File Description:       Arc Update
Company:                Perfect World Entertainment Inc
Legal Copyright:        Copyright(C)2010. Perfect World Entertainment Inc.All rights reserved.
Legal Trademarks:       
Comments:               

File Version String:    1.0.0.1
File Version:           1.0.0.1
Product Version String: 1.0.0.1
Product Version:        1.0.0.1

Version 1.1.0.18711 detected correctly.

I have Xinorbis 8.1.14 installed, but the displayed version is Unknown, please report

Here the information extracted from the EXE file:

File name and path:     D:\PortableApps\PortableApps\_XinorbisPortable\x8.64.exe
Product Name:           Xinorbis
Internal Name:          
Original Filename:      

File Description:       64 bit Pro
Company:                www.MaximumOctopus.com
Legal Copyright:        (c) Paul Alan Freshney 2017
Legal Trademarks:       Maximum Octopus Limited
Comments:               

File Version String:    8.0.15.59
File Version:           8.0.15.59
Product Version String: 8.0.0.0
Product Version:        8.0.0.0

@Tom At the website of Xinorbis (http://xinorbis.com/catware.htm) you can read:

Xinorbis is no longer split in to Free and Paid-for versions: it's all free for everyone!

In the title bar of Xinorbis (not the Help -> About window) you also see the text "Pro".
So you should also rename it to Xinorbis Pro.

Currently you show the version number Unknown, please report so please fix this.
The installed version is 8.1.14

Today I got the invitation to test the current Closed Beta of GOG Galaxy.
Details of this Beta can be found here: https://www.gogalaxy.com/en/download
So please add "Beta" in the version number and please mark is as "Prerelease".

Next the displayed version number should be altered.
In the application the displayed version number is 2.04.
In VulnDetect the displayed version number is 2.0.4.10.
So you should show the same version number that is shown in the app.

Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
Product Name:           GOG Galaxy
Internal Name:          GalaxyClient.exe
Original Filename:      GalaxyClient

File Description:       GOG Galaxy
Company:                GOG.com
Legal Copyright:        © 2019 GOG Sp. z o.o. All rights reserved.
Legal Trademarks:       
Comments:               

File Version String:    2.0.4.10
File Version:           2.0.4.10
Product Version String: 2.0.4.10
Product Version:        2.0.4.10

I installed an update for Arc Client and now the displayed version number should be altered.
In the application the displayed version number is 1.1.0.18711.
In VulnDetect the displayed version number is Please report version.

I copied the EXE also to the folder E:\VulnDetect_Special_Files
Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     E:\Arc\Arc.exe
Product Name:           Arc
Internal Name:          Arc.exe
Original Filename:      Arc.exe

File Description:       Arc Update
Company:                Perfect World Entertainment Inc
Legal Copyright:        Copyright(C)2010. Perfect World Entertainment Inc.All rights reserved.
Legal Trademarks:       
Comments:               

File Version String:    1.0.0.1
File Version:           1.0.0.1
Product Version String: 1.0.0.1
Product Version:        1.0.0.1

I installed an update for Wolcen: Lords of Mayhem and now the displayed version number should be altered.
In the application the displayed version number is 1.1.5.0 Beta.
In VulnDetect the displayed version number is 3.8.6.53.

I copied the EXE also to the folder E:\VulnDetect_Special_Files
Tell me if you need a screen shot of the Help -> About window.

Here the information extracted from the EXE file:

File name and path:     E:\Steam\SteamApps\common\Wolcen\win_x64\Wolcen.exe
Product Name:           Wolcen: Lords of Mayhem
Internal Name:          
Original Filename:      

File Description:       
Company:                Wolcen Studio
Legal Copyright:        (C) 2015 Wolcen Studio
Legal Trademarks:       
Comments:               

File Version String:    3,8,6,53
File Version:           3.8.6.53
Product Version String: 3.8.6.53
Product Version:        3.0.0.0

By default the entries in the list of applications are collapsed.
So users can not see the security status of bundled applications.
This can be dangerous if a bundled app has vulnerabilities.

The security status of Microsoft Office 2016 is OK.

Then I expanded Microsoft Office 2016 to check if all bundled programs are listed.
Here I saw that two bundled applications have known vulnerabilities.

This information is not shown by default (when the entry is collapsed).
So you should inherit the vulnerability status from the bundled applications to the parent (main) application.
Means: if one of the bundled apps is insecure then the main app should also be insecure.

This way users see at once that the whole package (application and all bundled applications) is insecure.

@Tom I talked to Sophie, the programmer of the tool.
It should be called Openspace Desktop like shown in the Product Name (there she uses the Linux syntax, so in Windows it should be Openspace Desktop).

Name of the app:
PortableApps.com Platform

Developer:
PortableApps.com

Website:
https://portableapps.com

Download Site:
https://portableapps.com/download

Version number displayed in the app:
16.0.2

App-Icon (in ICO format)

Here the information extracted from the EXE file:

File name and path:     D:\PortableApps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
Product Name:           PortableApps.com Platform
Internal Name:          PortableApps.com Platform
Original Filename:      

File Description:       PortableApps.com Platform
Company:                PortableApps.com
Legal Copyright:        Rare Ideas, LLC
Legal Trademarks:       PortableApps.com
Comments:               

File Version String:    16.0.2.0
File Version:           16.0.2.0
Product Version String: 16.0.2.0
Product Version:        16.0.2.0