CVE-2022-29072 PoC — 7-Zip 缓冲区错误漏洞

Source

https://github.com/tiktb8/CVE-2022-29072

Associated Vulnerability

Title:7-Zip 缓冲区错误漏洞 (CVE-2022-29072)
Description:7-Zip是一个压缩软件。 7-Zip 21.07存在安全漏洞，该漏洞允许在扩展名为 .7z 的文件被拖到帮助>内容区域时进行权限升级和命令执行。这是由 7z.dll 配置错误和堆溢出引起的。该命令在7zFM.exe进程下的子进程中运行。

Description

Powershell to mitigate CVE-2022-29072

Readme

#7-Zip CVE 2022-29072 - Powershell Detection/Mitigation

The deletion of the offending CHM file is commented out.
Uncommenting causes the script to forcefully delete files - use at your own risk!

If submitting a PR with a new hash please provide file as well for verification.

File Snapshot


 [4.0K]  /data/pocs/20368f270933c57a09cf10b4e0f6f6c8d35356d6
├── [4.0K]  chm samples
│   ├── [ 97K]  7-zip-2734F4BB258E0D8ACC10C0084583C845BC77B06C56F010E1E2F7949C7D9F62B0.chm
│   ├── [108K]  7-zip-403D0C9BA399D1F9A41052CCC43CF6AFB0C070C08A1D662B313A6B406BD4B282.chm
│   ├── [110K]  7-zip-4F5C2170EFC2B6AF63873AADFED45E398BA73B414A87EE1E95C4A3AF3D5C7EC3.chm
│   ├── [106K]  7-zip-609741A35453535DCC413532D835FDB91127F84359F18C3EAAC760327D954B17.chm
│   ├── [106K]  7-zip-610070593B804DC33D787E7B5695C523265D2ED82CCF7622205A85A02A6B3708.chm
│   └── [ 93K]  7-zip-772FAC69CC44C5C0AE60D2C49EF395EA0ADD1A2FDF5A94ED9DF7D02348677AFC.chm
├── [1.0K]  LICENSE
├── [3.6K]  Mitigate-CVE2022-29072.ps1
├── [ 278]  README.md
└── [ 390]  sha256sums.txt

1 directory, 10 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!