CVE-2022-1026 PoC — Kyocera multifunction printers 安全漏洞

Source

Associated Vulnerability

Title:Kyocera multifunction printers 安全漏洞 (CVE-2022-1026)
Description:Kyocera multifunction printers是日本京瓷（Kyocera）公司的一台打印机。 Kyocera multifunction printers存在安全漏洞，该漏洞源于通过未充分保护的通讯簿导出功能无意中暴露敏感用户信息，包括用户名和密码。

Description

Improved Golang Version of Rapid7 PoC for CVE-2022-1026

Readme

# kygocera (CVE-2022-1026)
Improved Golang Version of Rapid7 PoC for CVE-2022-1026 (https://www.rapid7.com/blog/post/2022/03/29/cve-2022-1026-kyocera-net-view-address-book-exposure/)

credits to Aaron Herndon / https://twitter.com/ac3lives

greets to https://github.com/D4RKMATT3R


# CVE-2022-1026

### install
```
git clone https://github.com/r0lh/kygocera.git
cd kygocera && go build kygocera.go
./kygocera -t <IP / URL / IP-Range>
```

or

```
go install github.com/r0lh/kygocera@latest
kygocera -h
```

### usage
```
kygocera -h

kygocera -u 192.168.0.0/24

kygocera -u printer.mynetwork.local
```

set timeout (in milliseconds) and port

```
./kygocera -u 127.0.0.1 -p 9091 -t 200
```

disable ssl 
```
./kygocera -u 192.168.0.0/24 -n
```

or just 

```
go run kygocera -u 192.168.0.0/24
```

File Snapshot


 [4.0K]  /data/pocs/b46e59a4d64b411829fa237984ec42942bf86d57
├── [  43]  go.mod
├── [ 12K]  kygocera.go
└── [ 798]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!