CVE-2023-38831 PoC — WinRAR 安全漏洞

Source

https://github.com/sudo-py-dev/CVE-2023-38831

Associated Vulnerability

Title:WinRAR 安全漏洞 (CVE-2023-38831)
Description:WinRAR是一款文件压缩器。该产品支持RAR、ZIP等格式文件的压缩和解压等。 RARLabs WinRAR 6.23之前版本存在安全漏洞。攻击者利用该漏洞可以执行任意代码。

Description

winrar exploit 6.22 <=

Readme

# CVE-2023-38831
winrar exploit 6.22 &lt;=


# Quick poc
```
git clone https://github.com/nhman-python/CVE-2023-38831.git
cd cd CVE-2023-38831
python3 poc.py poc
```

# example usage

```
python3 simple_file.txt script.bat output.zip
```

# example usage
https://www.youtube.com/watch?v=-mN4tTKaMhQ

File Snapshot


 [4.0K]  /data/pocs/2b8f233fa15917ec8df53eba2db63a9244511094
├── [ 11K]  LICENSE
├── [2.2K]  poc.py
├── [ 299]  README.md
├── [   9]  script.bat
└── [  18]  test.txt

1 directory, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!