zip-slip-vulnerability icon indicating copy to clipboard operation
zip-slip-vulnerability copied to clipboard
verified publisher icon snyk

how to add ../ in tar file

Open mikelueng opened this issue 4 years ago • 4 comments

hi, would you tell me the way how to add ../ in tar file.

mikelueng avatar Jul 06 '21 08:07 mikelueng

metasploit has a module

or you could script it yourself, here's a starting point: https://github.com/jwilk/traversal-archives/blob/master/tar/Makefile

ggkitsas avatar Jul 06 '21 08:07 ggkitsas

thank you so much.

mikelueng avatar Jul 06 '21 08:07 mikelueng

when I use zip_slip module in metasploit, it seems that I can just use the payload msf provided, but can't specify the content of the compressed file. If I want to exploit the Zip_Slip_Vulnerability to override /ect/crontab with correct format , how could I do for this ?

mikelueng avatar Jul 19 '21 08:07 mikelueng

finally, I find the way to override etc/crontab: 1)mkdir etc in the path: ~/mike/java/yasuo/abc/, then write crontab in the folder "etc" we just mkdir. 2)root@kali:~/mike/java/yasuo/abc/11/22/33# tar cPvf cron.tar ../../../etc/crontab bingo, get cron.tar include ../../../etc/crontab

mikelueng avatar Jul 20 '21 04:07 mikelueng