Skip to content

0x09AL/CVE-2017-11882-metasploit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
cve-2017-11882.rtf
cve-2017-11882.rtf
 
 
cve_2017_11882.rb
cve_2017_11882.rb
 
 

Repository files navigation

CVE-2017-11882-metasploit

This is a Metasploit module which exploits CVE-2017-11882 using the POC below:

https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.

Installation

  1. Copy the cve_2017_11882.rb to /usr/share/metasploit-framework/modules/exploits/windows/local/
  2. Copy the cve-2017-11882.rtf to /usr/share/metasploit-framework/data/exploits/

This module is a quick port to Metasploit and uses mshta.exe to execute the payload.

There are better ways to implement this module and exploit but will update it as soon as I have the time.

About

This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.

Resources

Readme
Activity

Stars

98 stars

Watchers

7 watching

Forks

62 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages