SHARE
CORE IMPACT v12 - Exploits Update (Fri Jan 20 2012)
Microsoft Office Assembly Execution Exploit (MS12-005)
Exploits/Client Side [Windows]
Fri Jan 20 2012
Incomplete blacklist vulnerability in the Windows Packager configuration allows remote attackers to execute arbitrary code via a crafted ClickOnce application in a Microsoft Office document. warning: "This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation."
Exploits Vulnerabiltiy: CVE-2012-0013