Microsoft Outlook 0-Click rce vulnerability

6923 Views 0 Replies 1337day
#
01-24-2025, 06:24 AM |
1337day
BOOT

Posts18
Reputation 2
JoinedMay 2022
The vulnerability is located in ole32.dll!UtOlePresStmToContentsStm. The purpose of the function is ti convert data in an "OlePres" stream within an OLE storage into appropriately formatted data and insert it into the "CONTENTS" stream in the same storage. It receives an IStorage pointer to a storage object and three rather unimportant arguments.



   

POC:

Hidden Content


Reply to this thread to unlock the contents
This post was last modified: 01-24-2025, 06:27 AM by 1337day
Quote
Back to top
Thread Info
BoardGeek Market
Author1337day
Posted
Views6923
Replies0
Participants1
Related Forums
Cyber Archive
Crypto Post Office
Related Threads
SilverBulletPro v1.5.8
XDumpGO v1.5 - Fastest SQL injection based dumper
SqlRay v3.1.0 LTS Sqli Vulnerability Scanner
BLTools v2.9.1 Pro Cracked
(1)
1
1337day

This board is for authorized security research only. Attacking systems without permission is illegal. The community follows responsible disclosure.

root@hackertop:~# status --global
HACKERS ONLINE
ACTIVE CTFs
CVEs TODAY
HACK COINS CIRC

Hacker Top Community unites hacker,threat intel,CTF players,open-source contributors&geeks.Advancing frontier security research legally.

PGP FINGERPRINT
A1B2 C3D4 E5F6 G7H8
I9J0 K1L2 M3N4 O5P6
COMMUNITY
RESOURCES
For educational and defensive purposes only.
LEGAL & ETHICS
© HACKERTOP.COM  ·  All your base are belong to us.
EN
build/a3f8c1d
ALL SYSTEMS NOMINAL