Vulnerability identifier: #VU9287

Vulnerability risk: High

CVSSv3.1: 9.2 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2017-11882

CWE-ID: CWE-119

Exploitation vector: Network

Exploits in database: 11

• August 2, 2022
  • rtfkit (generate RTF exploit payload. uses cve-2017-11882, cve-2017-8570, cve-2018-0802, and cve-2018-8174.) [Github]
• November 17, 2020
  • rtfkit (generate RTF exploit payload. uses cve-2017-11882, cve-2017-8570, cve-2018-0802, and cve-2018-8174.) [Github]
• April 7, 2020
  • CVE-2017-11882-for-Kali (# CVE-2017-11882-metasploit This is a Metasploit module which exploits CVE-2017-11882 using the POC below: https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about. ## Installation 1) Copy the cve_20 [Github]
• March 18, 2020
  • exploits (MS17-010|CVE-2017-11882) [Github]
  • CVE-2018-0802 (PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)) [Github]
  • CVE-2017-11882-metasploit (This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.) [Github]
  • CVE-2017-11882 (CVE-2017-11882 exploitation) [Github]
  • CVE-2017-11882 (Proof-of-Concept exploits for CVE-2017-11882) [Github]
  • CVE-2017-11882 (CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.) [Github]
  • Microsoft Office - OLE Remote Code Execution [Exploit-DB]
  • Microsoft Office CVE-2017-11882 [Metasploit]

Impact: Code execution

Vulnerable software:
Microsoft Office
Client/Desktop applications / Office applications

Vendor: Microsoft