| 1 | 1 | | # CVE-2022-41082-POC |
| 2 | 2 | | PoC for the CVE-2022-41082 NotProxyShell Vulnerability Effecting Microsoft Exchange Servers |
| 3 | 3 | | |
| | 4 | + | This is Post-Auth RCE for ProxyNotShell, valid cardentials are needed for command execution. |
| | 5 | + | |
| | 6 | + | # Affected versions |
| | 7 | + | Exchange 2013,16,19 till 08.11.2022 patch |
| | 8 | + | This exploit bypasses Microsoft Hotfix from Octorber 2022 |
| | 9 | + | |
| 4 | 10 | | # Setup |
| 5 | 11 | | ``` |
| 6 | 12 | | pip install -r requirements.txt |
| skipped 8 lines |
Mohamed El-Balki
committed
with
GitHub
1 year ago
1 parent dbc0da6b