Exploit for Protection Mechanism Failure in 7-Zip CVE-2025-0411

Name: Exploit for Protection Mechanism Failure in 7-Zip CVE-2025-0411
Rating: 5 (112 reviews)

2025-01-27 | CVSS 7.0

## https://sploitus.com/exploit?id=029E8D08-CF92-5C44-94B3-6632517FCAA8
https://blog.csdn.net/xc_214/article/details/145324643?spm=1001.2014.3001.5502

使用MinGW-w64进行cpp编译

x86_64-w64-mingw32-g++ loader.cpp -o loader.exe -s -static

![image](https://github.com/user-attachments/assets/b56b4bfb-8155-4593-a3ea-089365b8fe46)

编译后对exe进行7z压缩 执行两次
由于该漏洞需要用户交互，因此生成后的压缩文件需要手动点击，由于24.09版本之前缺乏MotW机制，因此可利用此问题诱导受害者执行

![image](https://github.com/user-attachments/assets/e7aa4dee-1f37-420a-a423-3efadf3bc7e7)