Clarification on Security Scan Results for Safran Products
Introduction
Various online services are available to scan Windows applications for potential security vulnerabilities, including threats such as malware, Trojans, and ransomware. One such service is VirusTotal, which some users have referenced when reviewing Safran products.
Safran Software Solutions maintains robust security protocols and virus protection measures to ensure that all distributed products are free from known vulnerabilities. If any security issue is identified, we act swiftly and decisively to resolve it.
External Services Disclaimer
Please note that VirusTotal is an independent service and is not affiliated with Safran Software Solutions. Safran does not endorse or take responsibility for the results or conclusions provided by this service.
Review of Flagged Files
The following files have been brought to our attention through external scans. These relates to the Safran Risk, Safran Project, Safran Planner, Safran Viewer and Safran Data Reporting Utility - products.
Each file has been reviewed and assessed individually:
antlr4.runtime.standard.dll
This file is no longer flagged as a threat based on the latest internal scan.
libmathnetnumericsmkl.dll
This file is part of Math.NET Numerics, which uses Intel’s Math Kernel Library to enhance performance in scientific and engineering calculations. Only one out of 71 security vendors flagged it, suggesting a likely false positive.
Safran Printer driver
These files will be removed in version 25.1.00 of the software:
- cpwriter2.exe
- custmon32i.dll
- custmoni.dll
- pdfwriter32.exe
- preferences.exe
- setup.exe
- uninstpw.exe
- custmon64i.dll (located in c:\windows\system32)
If you prefer not to wait for the update, please refer to this document for mitigation steps: Ghostscript Concerns.
safranproject.exe
This is a legitimate Safran file used to launch the development environment (Virtual Machine). It is automatically generated by our development tools.
safransa.exe
Same purpose and origin as safranproject.exe.
safran.authentification.command.exe
This is a Safran component required for Azure authentication support.
c1.wpf.menu.dll
This is a third-party component. The supplier confirmed it is digitally signed and has passed standard security checks. The detection by SecureAge is likely a false positive. Recommended actions include verifying the digital signature and scanning with other tools. More details and updates are available from the supplier: ComponentOne Downloads
infragistics.wpf.datavisualization.dll
These are third-party components. The supplier believes the detection is a false positive due to code-generation techniques used in cross-platform development. No prior reports of issues have been found.
infragistics.wpf.datavisualization.resources.dll
These are third-party components. The supplier believes the detection is a false positive due to code-generation techniques used in cross-platform development. No prior reports of issues have been found.
sqlite-jdbc-3.42.0.0.dll
This file supports MPXJ, a library used to import data from other tools. Safran is transitioning to a newer version that resolves the flagged concerns.
Installer Shortcuts
These are shortcut files created by the Safran installer and pose no security risk:
• newshortcut6_de6e9c4658e54805a029116bb3547b34.exe
• safransashortcut_51872dea3dd44d049ea2772f8e3c7e6f.exe
Summary
All flagged files have been reviewed. Most detections appear to be false positives from external scanning tools. Several files, particularly those related to the printer driver, will be removed in future software versions. For immediate concerns, please refer to the dedicated mitigation guide linked above.