10 matches found
Exploit for External Control of File Name or Path in Microsoft
CVE-2025-33053 POC Exploit Overview The working director...
About Remote Code Execution – Internet Shortcut Files (CVE-2025-33053) vulnerability
About Remote Code Execution - Internet Shortcut Files CVE-2025-33053 vulnerability. A vulnerability from the June Microsoft Patch Tuesday. This vulnerability immediately showed signs of exploitation in the wild. This flaw allows a remote attacker to execute arbitrary code when a victim opens a...
📄 Microsoft Internet Shortcut Malicious URL
This Metasploit module exploits CVE-2025-33053 by generating a malicious .URL file pointing to a trusted LOLBAS binary with parameters designed to trigger unintended behavior. Optionally, a payload is generated and hosted on a specified WebDAV directory. When the victim opens the shortcut, it wil...
Exploit for External Control of File Name or Path in Microsoft
CVE-2025-33053 - WebDAV Remote Code Execution RCE PoC & C2 S...
Exploit for External Control of File Name or Path in Microsoft
CVE-2025-33053 Vulnerability Checker & Proof-of-Concept PoC...
WebDAV Windows 10 - Remote Code Execution (RCE)
Exploit Title: WebDAV Windows 10 - Remote Code Execution RCE Date: June 2025 Author: Dev Bui Hieu Tested on: Windows 10, Windows 11 Platform: Windows Type: Remote CVE: CVE-2025-33053 Description: This exploit leverages the behavior of Windows .URL files to execute a remote binary over a UNC path...
CVE-2025-33053
External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network...
CVE-2025-33053 Internet Shortcut Files Remote Code Execution Vulnerability
...
CVE-2025-33053
Summary of CVE-2025-33053 : A vulnerability in Windows WebDAV/Internet Shortcut handling allows remote code execution when a vulnerable host opens a crafted .url file that points to a WebDAV share. Exploitation relies on the WebClient service resolving UNC paths via WebDAV and may trigger arbitra...
CVE-2025-33053
creationtimestamp| type| source ---|---|--- 2025-06-10 15:24:53+00:00| seen| https://www.thezdi.com/blog/2025/6/10/the-june-2025-security-update-review 2025-06-10 17:10:39+00:00| seen| https://bsky.app/profile/campuscodi.risky.biz/post/3lrbf5cv7ys2h 2025-06-10 17:32:28+00:00| seen|...