Lucene search

K
githubexploitCC6DFDC6-184F-5748-A9EC-946E8BA5FB04
HistoryOct 24, 2021 - 11:17 p.m.

Exploit for Path Traversal in Microsoft

2021-10-2423:17:12
115
microsoft
exploit
cve-2021-40444
security
path traversal
remote code execution
vulnerability
html
cab file
zip slilp
dll
inf file
rundll32
patched
word
requirement
poc
extraction error
document
internet explorer

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L

AI Score

7.6

Confidence

High

EPSS

0.971

Percentile

99.8%

Fully Weaponized CVE-2021-40444

Malicious docx generator to e…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L

AI Score

7.6

Confidence

High

EPSS

0.971

Percentile

99.8%