MCPcopy Create free account
hub / github.com/Cr4ckC4t/cve-2022-41352-zimbra-rce

github.com/Cr4ckC4t/cve-2022-41352-zimbra-rce @main

Chat with this repo
repository ↗ · DeepWiki ↗ · + Follow
5 symbols 21 edges 1 files 0 documented · 0% updated 3y ago★ 109

Browse by type

Functions 5 Types & classes 0
What it actually does AI analysis from the code graph — generated when you open this
loading…
README

(CVE-2022-41352) Zimbra Unauthenticated RCE

CVE-2022-41352 is an arbitrary file write vulnerability in Zimbra mail servers due to the use of a vulnerable cpio version.

Affected Zimbra versions: - Zimbra <9.0.0.p27 - Zimbra <8.8.15.p34

(Refer to the patch notes for more details.)

Remediation:

In order to fix the vulnerability apply the latest patch (9.0.0.p27 and 8.8.15.p34 respectively) - or install pax and restart the server.

Usage:

You can either use flags or manipulate the default configuration in the script manually (config block at the top). Use -h for help.

$ python cve-2022-41352.py -h

$ vi cve-2022-41352.py
# Change the config items.

$ python cve-2022-41352.py manual
# This will create an attachment that you can then send to the target server.
# The recipient does not necessarily have to exist - if the email with the attachment is parsed by the server the arbitrary file write in cpio will be triggered.

Example:

example (The above screenshot shows a wrong output for the email body but that has been fixed.)

Demo:

https://user-images.githubusercontent.com/63863112/201446602-20d9adbb-d138-4d6b-bca7-5bec80d75972.mp4

Core symbols most depended-on inside this repo

Shape

Function 5

Languages

Python100%

Modules by API surface

cve-2022-41352.py5 symbols

For agents

$ claude mcp add cve-2022-41352-zimbra-rce \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact

Ask about this repo answers extend the page