CVE-2023-38831 PoC — WinRAR 安全漏洞

Source

https://github.com/akhomlyuk/cve-2023-38831

Associated Vulnerability

Title:WinRAR 安全漏洞 (CVE-2023-38831)
Description:WinRAR是一款文件压缩器。该产品支持RAR、ZIP等格式文件的压缩和解压等。 RARLabs WinRAR 6.23之前版本存在安全漏洞。攻击者利用该漏洞可以执行任意代码。

Description

CVE-2023-38831 WinRAR

Readme

# CVE-2023-38831

#### Vulnerable: WinRAR <= 6.22
https://www.win-rar.com/

### Usage:
```bash
python3 cve-2023-38831.py file_name payload_name archive_name
```

![poc.png](docs/poc.png)

## Refs:
* https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/
* https://xakep.ru/2023/08/24/winrar-0day/
### Telegram:
https://t.me/pt_soft

File Snapshot


 [4.0K]  /data/pocs/83f73c000efd58d398b6331e50122fc53e38aa02
├── [1.6K]  cve-2023-38831.py
├── [4.0K]  docs
│   └── [145K]  poc.png
├── [  12]  payload.bat
├── [ 47K]  qr.png
└── [ 338]  README.md

1 directory, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!