This module exploits an error while processing the OEPlaceholderAtom Record when loading PPT files into memory that can be exploited to corrupt memory via a specially crafted PPT file. This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
A remote code execution vulnerability exists in the way that Microsoft Office Powerpoint handles specially crafted Powerpoint files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
A buffer overflow in Microsoft Outlook allows user-assisted remote attackers to execute arbitrary code via a crafted OSS file that triggers memory corruption.
This module exploits a vulnerability in the Microsoft Office Works converter that could allow remote code execution via a specially crafted .wps file.
Microsoft Office Word is prone to a memory corruption vulnerability when the wdGetApplicationObject function processes a malformed Word document. This can be exploited to execute arbitrary code by convincing an unsuspecting user to open a specially crafted .DOC file.
This module exploits a stack-based buffer overflow in Microsoft Office Word by sending a specially crafted .RTF file with a malformed pFragments record. This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module exploits a buffer overflow on Microsoft Office Word when parsing a malformed .DOC file with a specially crafted Property Data record.
This module exploits a vulnerability in Microsoft Office Word (.DOC files). The vulnerability is caused due to a boundary error in winword.exe within the processing of DOC files. This can be exploited to cause a memory corruption when a specially crafted file is opened. This module runs a malicious web server on the Core Impact Console and waits for an unsuspecting user to trigger the exploit by connecting to it.
This module exploits an error while processing the FIB when loading Word files into memory that can be exploited to corrupt memory via a specially crafted DOC file. This module runs a web server waiting for vulnerable clients to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.
This module exploits a stack-based buffer overflow in the Microsoft Office Web Components. This module runs a web server waiting for vulnerable clients (Internet Explorer 6) to connect to it. When the client connects, it will try to install an agent by exploiting this vulnerability.