CVE-2022-4510

This exploit leverages a vulnerability in Binwalk (versions 2.1.2b through 2.3.2) to achieve remote command execution by embedding a malicious Python plugin within a crafted PNG file. The plugin executes a reverse shell via netcat when processed by Binwalk.

This repository contains a Python script that generates exploits for CVE-2022-4510, a vulnerability in Binwalk. The script can create payloads for SSH key injection, command execution, or reverse shells by embedding malicious code in a PNG file.

This PoC exploits CVE-2022-4510 in Binwalk by crafting a malicious PNG file with embedded Python code that triggers remote command execution via a reverse shell when processed by Binwalk. The exploit leverages Binwalk's plugin system to execute arbitrary commands.

This Python script generates a malicious PFS file to exploit CVE-2022-4510, a path traversal vulnerability in binwalk. It allows arbitrary file overwrite with binwalk's permissions, potentially leading to privilege escalation.