01-24-2025, 02:24 PM
The vulnerability is located in ole32.dll!UtOlePresStmToContentsStm. The purpose of the function is ti convert data in an "OlePres" stream within an OLE storage into appropriately formatted data and insert it into the "CONTENTS" stream in the same storage. It receives an IStorage pointer to a storage object and three rather unimportant arguments.
POC:
POC:
