Skip to content

VictoriousKnight/CVE-2023-38831_Exploit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
exploit.py
exploit.py
 
 
listener.py
listener.py
 
 
scholarship.pdf
scholarship.pdf
 
 
shell.py
shell.py
 
 

Repository files navigation

CVE-2023-38831 Exploit Proof-of-Concept

Overview

This repository contains a Python script that demonstrates a proof-of-concept (PoC) exploit for CVE-2023-38831. This exploit leverages a vulnerability in specific file-processing mechanisms to execute a reverse shell payload through a malicious RAR file.

Disclaimer:
This project is intended for educational purposes and ethical security research only. Unauthorized use of this code to compromise systems or networks without prior consent is illegal and unethical. The author disclaims all responsibility for misuse.

How It Works

The script automates the creation of a malicious RAR file that exploits the CVE-2023-38831 vulnerability. It embeds a Python reverse shell script into a crafted file structure that executes stealthily.

Steps Performed:

  1. Takes a bait file (non-suspicious file) and a script file (malicious payload) as input.
  2. Creates a structured directory to hide the malicious payload.
  3. Embeds a VBScript to execute the payload silently.
  4. Crafts a RAR archive with manipulated file headers to bypass detection mechanisms.
  5. Outputs the final exploit file.

Requirements

  • Python 3.6+
  • WinRAR 6.2 or below.
  • Ensure shutil and os modules are available (these are standard with Python).

Usage

  1. Clone this repository:

    git clone https://github.com/VictoriousKnight/CVE-2023-38831-POC.git
cd CVE-2023-38831-POC

  2. Prepare the following files:

    • Bait file: Any legitimate empty file (e.g., a harmless PDF or image).
    • Script file: A Python reverse shell or similar payload.

  3. Run the script:

    python exploit.py

  4. Provide the required inputs:

    • Name of the bait file.
    • Name of the malicious script.
    • Desired name for the output RAR file.

  5. The exploit file will be generated in the current working directory.

Example

$ python exploit.py
CVE-2023-38831 POC
-------------------------------
Enter the bait file name: scholarship.pdf
Enter the script file name: shell.py
Enter the output RAR file name: scholarship_approved.rar
Exploit generated successfully as 'scholarship_approved.rar'.

Important Notes

  • This script is a proof of concept and should be used only in controlled environments with explicit permission from the system owner.
  • Avoid distributing or using the generated files outside ethical or educational contexts.
  • The exploit relies on known behaviors of RAR processing utilities and may not work in all configurations.

Author

Reminder: Misuse of this script can lead to severe legal consequences. Always follow ethical guidelines and obtain proper authorization.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages