#!/usr/bin/python -w # Title : Express Zip <= 2.40 Path Traversal # Date : 07/04/2016 # Author : R-73eN # Tested on : Windows Xp / Windows 7 Ultimate # Software Link : http://ift.tt/1qzprKw # Download Link: http://ift.tt/1NfFce8 # Vulnerable Versions : Express Zip <= 2.40 # Express Zip doesn't validates " ..\ " which makes possible # to do a path traversal attack which can be converted easily to RCE # How to Reproduce: # 1- Run Exploit # 2- Right Click evil.zip go to Express Zip and click Extract Here # 3- File will be extracted to the root of the partition in this case C:\POC.txt # This quick and dirt code is written only for demonstration purposes. # If you wanna profit from it you must modify it. # Video: https://www.youtube.com/watch?v=kb43h8Hoo0o
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment