当前位置：网站首页>Analysis and utilization of Microsoft Office Word remote command execution vulnerability (cve-2022-30190)

Analysis and utilization of Microsoft Office Word remote command execution vulnerability (cve-2022-30190)

2022-06-25 07:50:00 【Qianli ZLP】

One 、 Vulnerability profile

CVE-2022-30190 Holes in the 2022 year 5 month 27 Japan , from nao_sec Found one from Belarus IP Upload to VirusTotal Malice Word file . This document uses Microsoft Word Remote template function link malicious HTML file ,Winword.exe The program handles the malicious HTML In the document js Code found using ”ms-msdt” Agreed URL, Then start msdt.exe Program (Microsoft Support Diagnostics Tool) Handle the URL, Cause embedded in URL Medium powershell The command is executed .

2022 year 5 month 30 Japan , Microsoft released the vulnerability number CVE-2022-30190.

Vulnerability status

Vulnerability details

Loophole POC

Loophole EXP

Use in the field

原网站

版权声明
本文为[Qianli ZLP]所创，转载请带上原文链接，感谢
https://yzsam.com/2022/176/202206250552112848.html

当前位置：网站首页>Analysis and utilization of Microsoft Office Word remote command execution vulnerability (cve-2022-30190)

Analysis and utilization of Microsoft Office Word remote command execution vulnerability (cve-2022-30190)

One 、 Vulnerability profile

Vulnerability status

边栏推荐

猜你喜欢

随机推荐