xaitax/WinRAR-CVE-2023-38831

This module exploits a vulnerability in WinRAR (CVE-2023-38831). When a user opens a crafted RAR file and its embedded document, a script is executed, leading to code execution.

WinRAR-CVE-2023-38831

This Metasploit module exploits a vulnerability in WinRAR 6.22 (CVE-2023-38831). When a user opens a crafted RAR file and its embedded document, the decoy document is executed, leading to code execution.

It is not pretty, but works. 🤷🏻

Alexander Hagenah @xaitax

References

• https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/
• https://b1tg.github.io/post/cve-2023-38831-winrar-analysis/