Microsoft Excel – HFPicture Record Parsing Memory Corruption

Exploit Database
8 阅读

作者： Abysssec

日期： 2010-09-23
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/15088/

'''
________ __ ____ 
 |\/|/ __ \ /\| || |_ \
 | \/ | || | /\ | || | |_) |
 | |\/| | || |/ /\ \| || |_ <(day 23 0day binary anlysis)
 | || | |__| / ____ \ |__| | |_) |
 |_||_|\____/_/\_\____/|____/

'''
 
Title :Microsoft Excel HFPicture Record Parsing Memory Corruption (0day)
Version :Excel 2002 SP3
Analysis:http://www.abysssec.com
Vendor:http://www.microsoft.com
Impact:High
Contact :shahin [at] abysssec.com , info[at] abysssec.com
Twitter :@abysssec
CVE :NO CVE
 
here is BA : http://www.exploit-db.com/moaub-23-microsoft-office-excel-2002-memory-corruption-vulnerability-0day/
here is the PoC : https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/15088.zip (moaub-23-excel-poc.zip)

last Exploits
Microsoft Excel – HFPicture Record Parsing Memory Corruption的更多信息

F5 BIG-IP – Authentication Bypass (PoC)：
WM Downloader 3.0.0.9 – PLS WMDownloader (PoC)：
Magic ISO Maker 5.5(build 281) – ‘Serial Code’ Denial of Service (PoC)：
Flash – Issues in DefineBitsLossless and DefineBitsLossless2 Leads to Using Uninitialized Memory：
Corel WordPerfect Office X5 15.0.0.357 – ‘wpd’ Buffer Overflow (PoC)：
FBZX 2.10 – Local Stack Buffer Overflow：
Winamp 5.666 build 3516 – Corrupted .flv Crash (PoC)：
VideoLAN VLC Media Player 1.1.11 – ‘.NSV’ File Denial of Service：