Exploit for #VU56377 Code Injection in Microsoft products
Vulnerability identifier: #VU56377
Vulnerability risk: Critical
CVSSv4.0: 8.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red]
CVE-ID:
CWE-ID:
CWE-94
Exploitation vector: Network
Exploits in database: 32
- December 19, 2021
- December 9, 2021
- Microsoft Office Word Malicious MSHTML RCE [Metasploit]
- November 29, 2021
- CVE-2021-40444-exp () [Github]
- November 11, 2021
- October 29, 2021
- October 26, 2021
- CVE-2021-40444 () [Github]
- October 18, 2021
- October 3, 2021
- CVE-2021-40444 () [Github]
- September 29, 2021
- September 25, 2021
- September 21, 2021
- September 19, 2021
- MSHTML-CVE-2021-40444 () [Github]
- September 16, 2021
- September 14, 2021
- CVE-2021-40444 (partly working PoC, check lockedbytes PoC for full experience!) [Github]
- cve-2021-40444-analysis () [Github]
- CVE-2021-40444_EXP_JS (根据已知样本反编译代码) [Github]
- CVE2021-40444 () [Github]
- CVE-2021-40444 () [Github]
- September 12, 2021
- Exploit-PoC-CVE-2021-40444-inject-ma-doc-vao-docx () [Github]
- CVE-2021-40444 (CVE-2021-40444 Microsoft MSHTML Remote Code Execution Vulnerability) [Github]
- CVE-2021-40444-Sample (CVE-2021-40444 Sample ) [Github]
- CVE-2021-40444_builders (This repo contain builders of cab file, html file, and docx file for CVE-2021-40444 exploit) [Github]
- CVE-2021-40444-POC () [Github]
- CVE-2021-40444-docx-Generate () [Github]
- MSHTMHell (Malicious document builder for CVE-2021-40444 ) [Github]
- cve-2021-40444 (Reverse engineering the "A Letter Before Court 4.docx" malicious files exploting cve-2021-40444) [Github]
- Caboom (A malicious .cab creation tool for CVE-2021-40444) [Github]
- CVE-2021-40444-docx-Generate () [Github]
- CVE-2021-40444 (CVE-2021-40444 PoC) [Github]
Vulnerable software:
Windows
Operating systems & Components /
Operating system
Windows Server
Operating systems & Components /
Operating system
Microsoft Internet Explorer
Client/Desktop applications /
Web browsers
Vendor: Microsoft
