Excalibur - An Eternalblue exploit payload based Powershell

Excalibur is an Eternalblue exploit based "Powershell" for the Bashbunny project. It's purpose is to reflect on how a "simple" USB drive can execute the 7 cyber kill chain. Excalibur may be used only for demostrations purposes only, and the developers are not responsible to any misuse or illeagal...

Microsoft Excel DbOrParamQry memory corruption

Added: 03/11/2010 CVE: CVE-2010-0264 BID: 38555 OSVDB: 62823 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability in Microsoft Excel allows command execution when a user...

Microsoft Excel DbOrParamQry memory corruption

Added: 03/11/2010 CVE: CVE-2010-0264 BID: 38555 OSVDB: 62823 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability in Microsoft Excel allows command execution when a user...

Microsoft Excel DbOrParamQry memory corruption

Added: 03/11/2010 CVE: CVE-2010-0264 BID: 38555 OSVDB: 62823 Background Microsoft Excel, part of the Microsoft Office product suite, is a spreadsheet application for Windows and Macintosh platforms. Problem A memory corruption vulnerability in Microsoft Excel allows command execution when a user...

Microsoft Excel FNGROUPNAME记录未初始化内存漏洞（MS10-017）

BUGTRAQ ID: 38553 CVE ID: CVE-2010-0262 Excel是微软Office套件中的电子表格工具。 Excel在解析XSL文件中畸形FnGroupName、BuiltInFnGroupCount和FnGrp12记录时存在未初始化内存漏洞，成功利用此漏洞的攻击者可以完全控制受影响的系统。 Microsoft Excel 2007 SP2 Microsoft Excel 2007 SP1 Microsoft Office 2004 for Mac 临时解决方法： 使用Microsoft Office文件阻断策略以防止打开未知或不可信任来源的Office...

Microsoft Excel EntExU2记录内存破坏漏洞（MS10-017）

BUGTRAQ ID: 38547 CVE ID: CVE-2010-0257 Excel是微软Office套件中的电子表格工具。 Excel处理特制Excel文件中畸形EntExU2记录的方式存在内存破坏漏洞。攻击者可以通过诱骗用户打开特制的XLS文件来利用这个漏洞，成功利用此漏洞可以导致完全控制受影响的系统。 Microsoft Excel 2002 SP3 临时解决方法： 不要打开从不可信任来源接收到货从可信任来源意外接收到的Excel文件。 厂商补丁： Microsoft --------- Microsoft已经为此发布了一个安全公告（MS10-017）以及相应补丁:...

Microsoft Excel DbOrParamQry对象解析内存破坏漏洞（MS10-017）

BUGTRAQ ID: 38555 CVE ID: CVE-2010-0264 Excel是微软Office套件中的电子表格工具。 Excel在解析包含有畸形DbOrParamQry记录的.XLS文件时存在内存破坏漏洞，用户受骗打开了恶意的.XLS文件就可能导致执行任意代码。 DbOrParamQry记录指定了DbQuery或ParamQry记录，具体取决于之前的记录。记录查询参数（ParamQry）偏移DCh包含有有关ODBC参数化查询的记录，格式如下： /----- Offset Name Size Contents 4 wTypeSql 2 Used for ODBC querie...

Microsoft Excel MDXSet和ContinueFRT12记录堆溢出漏洞（MS10-017）

BUGTRAQ ID: 38552 CVE ID: CVE-2010-0261 Excel是微软Office套件中的电子表格工具。 Excel在解析XSL文件中畸形MDXSet和ContinueFRT12记录时存在堆溢出漏洞，成功利用此漏洞的攻击者可以完全控制受影响的系统。 Microsoft Excel 2007 SP2 Microsoft Excel 2007 SP1 临时解决方法： 使用Microsoft Office文件阻断策略以防止打开未知或不可信任来源的Office 2003及更早版本的文档。 当打开来自未知来源或不可信来源的文件时使用Microsoft...

Microsoft Excel对象类型混淆远程代码执行漏洞（MS10-017）

BUGTRAQ ID: 38550 CVE ID: CVE-2010-0258 Excel是微软Office套件中的电子表格工具。 Excel在解析XSL文件中畸形BRAI BIFF记录时存在内存破坏漏洞。在这种情况下，多个记录之间所共享的包含有识别对象类型字段的记录可能导致类型混淆。用户受骗打开了特制的Excel文档就可以触发这个漏洞。通过控制所分配堆块边界之外的内存，攻击者就可以控制虚函数调用中所使用的C++对象指针，导致将内存区处理为不同的对象类型，越界访问所分配的对象。 Microsoft Excel Viewer SP2 Microsoft Excel Viewer SP1...

Microsoft Plugs Security Holes in Windows, Office

After a busy February with 13 security bulletins, Microsoft is easing off the patching throttle a bit this month. Microsoft released two new security bulletins addressing 8 vulnerabilities, all not publically known at this time. It is not uncommon for Microsoft to have a large patch month followe...

Microsoft Excel FNGROUPNAME Record Uninitialized Memory (MS10-017; CVE-2010-0262)

Microsoft Excel is a popular spreadsheet application. A memory corruption vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger this flaw ...

Microsoft Excel XLSX File Parsing Code Execution (MS10-017; CVE-2010-0263)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger this...

Microsoft Excel MDXTUPLE and MDXSET Records Heap Overflow (MS10-017; CVE-2010-0260; CVE-2010-0261)

Microsoft Excel is a popular spreadsheet application. Multiple heap overflow vulnerabilities have been identified in Microsoft Excel. These vulnerabilities are due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger...

Microsoft Excel EntExU2 Record Memory Corruption (MS10-017; CVE-2010-0257)

Microsoft Excel is a popular spreadsheet application. A memory corruption vulnerability has been identified in Microsoft Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. A remote attacker could trigger this flaw ...