Date Added:
12.01.2020
Delivery Time:
24h
Description:
This vulnerability allows remote code execution every time a user opens a specially modified Microsoft Office Word (exploit doc) with an invalid Word file Stream.
This module Exploit EXE to DOC creates a stack buffer overflow in MSCOMCTL.OCX. It uses a malicious RTF to embed the specially crafted MS ComctlLib ListViewCtrl 2 Control as exploited. Compatible with all Office versions.
Demo: