1 | 1 | | # CVE-2022-41082-POC |
2 | 2 | | PoC for the CVE-2022-41082 NotProxyShell Vulnerability Effecting Microsoft Exchange Servers |
3 | 3 | | |
| 4 | + | This is Post-Auth RCE for ProxyNotShell, valid cardentials are needed for command execution. |
| 5 | + | |
| 6 | + | # Affected versions |
| 7 | + | Exchange 2013,16,19 till 08.11.2022 patch |
| 8 | + | This exploit bypasses Microsoft Hotfix from Octorber 2022 |
| 9 | + | |
4 | 10 | | # Setup |
5 | 11 | | ``` |
6 | 12 | | pip install -r requirements.txt |
| skipped 8 lines |