infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add intro header to office_ms17_11882

MS-2855/keylogger-mettle-extension
Carter Brainerd (thecarterb) 2018-02-02 14:12:36 -05:00 committed by GitHub
parent a7e9772e25
commit 2d8a249a56
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
documentation/modules/exploit/windows/fileformat/office_ms17_11882.md
View File

@ -1,7 +1,8 @@
## Introduction
Module exploits a flaw in how the Equation Editor that allows an attacker to execute arbitrary code in RTF files without interaction. The vulnerability is caused by the Equation Editor, to which fails to properly handle OLE objects in memory.
## Vulnerable Application
## Vulnerable Applications
- Microsoft Office 2016
- Microsoft Office 2013 Service Pack 1
@ -15,6 +16,7 @@ Module exploits a flaw in how the Equation Editor that allows an attacker to exe
3. Do: `set PAYLOAD [PAYLOAD]`
4. Do: `run`
## Options
### FILENAME
Filename to output & if injecting a file, the file to inject