CVE-2022-41352 PoC — Zimbra Collaboration Suite 路径遍历漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/passive/cves/2022/CVE-2022-41352.yaml

Associated Vulnerability

Title:Zimbra Collaboration Suite 路径遍历漏洞 (CVE-2022-41352)
Description:Zimbra Collaboration Suite（ZCS）是美国Zimbra的一款开源协同办公套件。该产品包括WebMail、日历、通信录等。 Zimbra Collaboration Suite (ZCS) 8.8.15版本和9.0版本存在路径遍历漏洞。攻击者利用该漏洞通过amavisd上传任意文件，导致对其他用户帐户的错误访问。

Description

An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.

File Snapshot


 id: CVE-2022-41352

info:
  name: Zimbra Collaboration - Unrestricted File Upload
  author: rxerium


...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!