Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
canvasImmunity CanvasMS14_064_IE_OLEAUT32
HistoryNov 11, 2014 - 10:55 p.m.

Immunity Canvas: MS14_064_IE_OLEAUT32

2014-11-1122:55:00
Immunity Canvas
exploitlist.immunityinc.com
89

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON
Name ms14_064_ie_oleaut32
CVE CVE-2014-6332 Exploit Pack
VENDOR: Microsoft
NOTES:

References:
http://blog.trendmicro.com/trendlabs-security-intelligence/a-killer-combo-critical-vulnerability-and-godmode-exploitation-on-cve-2014-6332/
http://www.secniu.com/how-to-use-vbscript-to-turn-on-the-god-mode/

This exploit has been tested on:

  • Windows 7 Professional EN (x32) with IE 8
  • Windows 7 Ultimate N EN (x32) with IE 8
  • Windows 7 Ultimate N EN (x32) with IE 9
  • Windows 7 Ultimate N EN with SP1 (x32) with IE 9
  • Windows 7 Ultimate N EN with SP1 (x32) with IE 10
  • Windows 7 Ultimate N EN with SP1 (x32) with IE 11
  • Windows 8.1 EN (x32) with IE 11

NOTE: With HTTP Callback Tunneling we inject a win32 shellcode
because the powershellNode doesn’t support it yet.

Make sure to enable on the clientd response settings:
- Respond directly with exploit

If execution of scripts is disabled on the target system (default configuration),
the user will get a popup asking if they want powershell to make changes to their
system. In corporate environments it is very unlikely that execution of scripts
is disabled.

Command line usage:
$ python ./exploits/clientd/clientd.py -l 192.168.1.102 -d 5555 -O server_port:8080 -O allowed_attack_modules:ms14_064_ie_oleaut32 -O auto_detect_exploits:0
$ ./commandlineInterface.py -v23 -p5555

Repeatability: Single
References: https://technet.microsoft.com/library/security/MS14-064
CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6332

Related

checkpoint_advisories 2
zdt 8
packetstorm 13
fireeye 14
threatpost 6
cisa_kev 1
exploitpack 3
seebug 2
securityvulns 2
saint 4
symantec 1
prion 1
vulnerlab 2
exploitdb 3
cert 1
metasploit 1
attackerkb 1
cve 1
openvas 1
securelist 2
nessus 1
mskb 1
mmpc 1
malwarebytes 1
thn 2
myhack58 1
kaspersky 1
checkpoint_advisories
checkpoint_advisories
Microsoft Windows OLE Obfuscated Automation Array Remote Code Execution (CVE-2014-6332)
2019-02-14 00:00:00
Microsoft Windows OLE Automation Array Remote Code Execution (MS14-064; CVE-2014-6332)
2014-11-11 00:00:00
zdt
zdt
Havij - OLE Automation Array Remote Code Execution Exploit
2015-07-01 00:00:00
The World Browser 3.0 Final - Remote Code Execution Exploit
2015-10-22 00:00:00
Internet Explorer OLE Automation Array Remote Code Execution Exploit
2014-11-13 00:00:00
packetstorm
packetstorm
Microsoft Internet Explorer Windows OLE Automation Array Remote Code Execution
2014-11-30 00:00:00
Microsoft HTA (HTML Application) Remote Code Execution
2015-08-22 00:00:00
Microsoft Internet Explorer OLE Pre-IE11 Code Execution
2014-11-21 00:00:00
fireeye
fireeye
GongDa vs. Korean News
2016-03-18 12:30:00
Threat actors leverage EternalBlue exploit to deliver non-WannaCry payloads
2017-06-02 13:00:00
GongDa vs. Korean News
2016-03-18 08:30:00
threatpost
threatpost
EternalBlue Exploit Spreading Gh0st RAT, Nitol
2017-06-02 14:32:11
Malvertising Campaign Redirects Browsers To Terror Exploit Kit
2017-10-25 08:28:31
Angler Exploit Kit, Bedep Malware Inflating Video Views
2015-05-05 08:00:41
cisa_kev
cisa_kev
Microsoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability
2022-03-25 00:00:00
exploitpack
exploitpack
IBM Security AppScan Standard 9.0.2 - OLE Automation Array Remote Code Execution
2015-06-01 00:00:00
Microsoft Internet Explorer 11 - OLE Automation Array Remote Code Execution (1)
2014-11-13 00:00:00
Microsoft Internet Explorer 11 - OLE Automation Array Remote Code Execution (Metasploit)
2014-11-13 00:00:00
seebug
seebug
IBM Security AppScan Standard <= 9.0.2 - OLE Automation Array Remote Code Execution
2015-08-31 00:00:00
IE Godmode remote code execution vulnerability, CVE-2014-6332)
2017-03-06 00:00:00
securityvulns
securityvulns
Microsoft HTA &#40;HTML Application&#41; - Remote Code Execution Vulnerability &#40;MS14-064&#41;
2015-08-24 00:00:00
Microsoft Windows multiple security vulnerabilities
2015-08-24 00:00:00
saint
saint
Windows OLE Automation Array command execution
2014-11-17 00:00:00
Windows OLE Automation Array command execution
2014-11-17 00:00:00
Windows OLE Automation Array command execution
2014-11-17 00:00:00
symantec
symantec
Microsoft Windows CVE-2014-6332 OLE Remote Code Execution Vulnerability
2014-11-11 00:00:00
prion
prion
Remote code execution
2014-11-11 22:55:00
vulnerlab
vulnerlab
MS HTA (HTML Application) - Code Execution (MS14-064)
2015-08-15 00:00:00
MS HTA (HTML Application) - Code Execution (MS14-064)
2015-08-15 00:00:00
exploitdb
exploitdb
IBM Security AppScan Standard 9.0.2 - OLE Automation Array Remote Code Execution
2015-06-01 00:00:00
Microsoft Internet Explorer 11 - OLE Automation Array Remote Code Execution (1)
2014-11-13 00:00:00
Microsoft Internet Explorer &lt; 11 - OLE Automation Array Remote Code Execution (Metasploit)
2014-11-13 00:00:00
cert
cert
Microsoft Windows Object Linking and Embedding (OLE) OleAut32 library SafeArrayRedim function vulnerable to remote code execution via Internet Explorer
2014-11-13 00:00:00
metasploit
metasploit
MS14-064 Microsoft Internet Explorer Windows OLE Automation Array Remote Code Execution
2014-11-24 07:25:18
attackerkb
attackerkb
CVE-2014-6332
2014-11-11 00:00:00
cve
cve
CVE-2014-6332
2014-11-11 22:55:00
openvas
openvas
Microsoft Windows OLE Object Handling Code Execution Vulnerabilities (3011443)
2014-11-12 00:00:00
securelist
securelist
Delving deep into VBScript
2018-07-03 13:00:13
The King is dead. Long live the King!
2018-05-09 06:00:56
nessus
nessus
MS14-064: Vulnerabilities in Windows OLE Could Allow Remote Code Execution (3011443)
2014-11-11 00:00:00
mskb
mskb
MS14-064: Vulnerabilities in Windows OLE could allow remote code execution: November 11, 2014
2014-11-11 00:00:00
mmpc
mmpc
Exploit kits remain a cybercrime staple against outdated software – 2016 threat landscape review series
2017-01-23 22:37:34
malwarebytes
malwarebytes
RIG exploit kit distributes Princess ransomware
2017-08-31 20:04:32
thn
thn
Experts Warn of Browser Extensions Spying On Users via Cloud9 Chrome Botnet Network
2022-11-09 11:01:00
Researchers Share New Insights Into RIG Exploit Kit Malware's Operations
2023-02-27 15:33:00
myhack58
myhack58
For a suspected CVE-2016-0189 the original attack sample debugging-vulnerability warning-the black bar safety net
2019-06-13 00:00:00
kaspersky
kaspersky
KLA10601 Multiple vulnerabilities in Microsoft products
2014-11-11 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON
Related for MS14_064_IE_OLEAUT32
checkpoint_advisories2zdt8packetstorm13fireeye14threatpost6cisa_kev1exploitpack3seebug2securityvulns2saint4symantec1prion1vulnerlab2exploitdb3cert1metasploit1attackerkb1cve1openvas1securelist2nessus1mskb1mmpc1malwarebytes1thn2myhack581kaspersky1