Security Notice just came out. Finished confirming all VPN clients are up to date.
The notice (linked below), if you scroll down to Resolution, says, “Download the script available in the MySonicWall portal under the download section for Global VPN Client and double click on the script file, which will safely remove the affected folders from the respective Windows clients.” Can someone help me locate where this script file is, I’m not finding it in the portal or the download page.
To be safe I remove the outdated version, run the script, then install the latest version. I just finished up with the majority of clients and everything is going fine.
I’d run the script because the RarSFX folder, which is left behind from the previous installation can be manipulated by bad actors.
Definitely run the script to be on the safe side. There’s nothing to worry about with the script, it’s fine. “If” the RarSFX folder is not deleted there’s an installer file left behind that can be manipulated. So, makes sense to play on the safe side and run the script.
Can copy this to a text file and run, super easy.
========> Start of script (don’t copy)
u/echo off
echo Copyright SonicWall Inc. All rights reserved.
echo=
echo=
set /A status= 0
:start
if exist %tmp%\RarSFX* (
echo The RarSFX folder exist, start deleting the folder and its contents.
echo please wait...
del /s /q %tmp%\\RarSFX\*.\*
for /d %%i in ("%tmp%\\RarSFX\*") do ( rd /s /q "%%\~i")
set /A status+= 1
goto start
) else if “%status%” GTR “0” (
echo All RarSFX folders were deleted successfully!
echo %date% %time%
) else (
echo RarSFX folder does not exist, no need to delete.