Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/0x09al/cve-2017-11882-metasploit

This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.
https://github.com/0x09al/cve-2017-11882-metasploit

Last synced: 2 months ago
JSON representation

This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.

Host: GitHub
URL: https://github.com/0x09al/cve-2017-11882-metasploit
Owner: 0x09AL
Created: 2017-11-21T18:17:28.000Z (about 7 years ago)
Default Branch: master
Last Pushed: 2017-11-21T20:34:57.000Z (about 7 years ago)
Last Synced: 2024-08-05T17:42:42.146Z (5 months ago)
Language: Ruby
Size: 6.84 KB
Stars: 100
Watchers: 7
Forks: 62
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# CVE-2017-11882-metasploit
This is a Metasploit module which exploits CVE-2017-11882 using the POC below:

https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.

## Installation
1) Copy the cve_2017_11882.rb to /usr/share/metasploit-framework/modules/exploits/windows/local/
2) Copy the cve-2017-11882.rtf to /usr/share/metasploit-framework/data/exploits/

This module is a quick port to Metasploit and uses mshta.exe to execute the payload.

There are better ways to implement this module and exploit but will update it as soon as I have the time.