CVE-2018-1000802

CRITICAL

Python Software Foundation Python <2.7 - Command Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-1000802. PoCs published by tna0y.

AI-analyzed exploit summary This PoC demonstrates a command injection vulnerability in Python's `shutil.make_archive` function (CVE-2018-1000802) on Windows systems. It exploits improper handling of user-supplied input to execute arbitrary commands via the zip utility when `zipfile` import fails.

Description

Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function. This vulnerability appears to have been fixed in after commit add531a1e55b0a739b0f42582f1c9747e5649ace.

Exploits (1)

nomisec WORKING POC 4 stars

by tna0y · poc

https://github.com/tna0y/CVE-2018-1000802-PoC

View Code ZIP pw:eip

This PoC demonstrates a command injection vulnerability in Python's `shutil.make_archive` function (CVE-2018-1000802) on Windows systems. It exploits improper handling of user-supplied input to execute arbitrary commands via the zip utility when `zipfile` import fails.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: CPython (Python) 2.7 prior to commit add531a1e55b0a739b0f42582f1c9747e5649ace

No auth needed

Prerequisites: Windows OS · Zip utility accessible via command line · Failed `zipfile` import

MITRE ATT&CK