Vulnerability identifier: #VU6193

Vulnerability risk: Critical

CVSSv3.1: 8.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2017-0199

CWE-ID: CWE-20

Exploitation vector: Network

Exploits in database: 13

• June 17, 2021
  • Microsoft Office - 'Composite Moniker Remote Code Execution [Exploit-DB]
• April 7, 2020
  • CVE-2017-8759 (NCC Group's analysis and exploitation of CVE-2017-8759 along with further refinements) [Github]
  • CVE-2017-8570 (Proof of Concept exploit for CVE-2017-8570) [Github]
• March 18, 2020
  • htattack (An exploit implementation for RCE in RTF & DOCs (CVE-2017-0199)) [Github]
  • CVE-2017-0199 (Exploit toolkit CVE-2017-0199 - v2.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / any other payload to victim w [Github]
  • PoC-CVE-2017-0199 (Exploit toolkit for vulnerability RCE Microsoft RTF) [Github]
  • CVE-2017-0199 (Exploit toolkit CVE-2017-0199 - v2.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter payload to victim without any c [Github]
  • CVE-2017-0199 (Exploit toolkit CVE-2017-0199 - v4.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft Office RCE. It could generate a malicious RTF/PPSX file and deliver metasploit / me [Github]
  • labs (Vulnerability Labs for security analysis) [Github]
  • Microsoft Excel - OLE Arbitrary Code Execution [Exploit-DB]
  • Microsoft Office Word - Malicious Hta Execution (Metasploit) [Exploit-DB]
  • Microsoft Word - .RTF Remote Code Execution [Exploit-DB]
  • Microsoft Office Word Malicious Hta Execution [Metasploit]

Impact: Code execution

Vulnerable software:
Microsoft Office
Client/Desktop applications / Office applications

Vendor: Microsoft