Web: https://packetstormsecurity.com/files/167989/zimbra_unrar_cve_2022_30333.rb.txt

Aug. 5, 2022, 2:56 p.m. |

Packet Storm packetstormsecurity.com

This Metasploit module creates a RAR file that can be emailed to a Zimbra server to exploit CVE-2022-30333. If successful, it plants a JSP-based backdoor in the public web directory, then executes that backdoor. The core vulnerability is a path-traversal issue in unRAR that can extract an arbitrary file to an arbitrary location on a Linux system. This issue is exploitable on Zimbra Collaboration versions 9.0.0 Patch 24 and below and 8.8.15 Patch 31 and below provided that UnRAR versions …

path path traversal zimbra

Application Security Engineer

@ Codility | United kingdom

Threat Analyst (WebApp)

@ Patchstack | Remote, EU Only

Senior Air Defense/BMD Subject Matter Expert

@ Sigma Defense | Dahlgren, Virginia, United States

GRC Security Specialist (Remote)

@ Curai Health | Bay Area, CA

Senior Manual QA (Cyber Protect)

@ Acronis | Prague, Czech Republic

Senior Security Assurance Specialist (Remote)

@ ID.me | United States (U.S.)