So I had Word opened and Microsoft AutoUpdate ran and I saw that there were updates to install. Being curious as I was, I went to the link listed about the "security update" and saw that there were exploits that allowed for the possibility of remote code execution in various versions of Excel. To see the table showing which are exploitable, check this link out. That is where I also found the two CVE numbers that were associated with the version of Excel that I'm running: Excel 2016 for Mac. I went to exploit-db.com to check out the CVE's listed: CVE-2015-2520 and CVE-2015-2523. Being the curious type I am, I downloaded the linked files and saw that they were excel files. Tried opening them, but Excel just warned me saying that they were corrupt or that there may be some missing data; no crashes. I'm still pretty new to this world but I'm wondering, does that just mean that my Excel is vulnerable but requires a different approach than what was done with the sample on db-exploit? Or does it just mean that it could be OS specific (I'm running OS X 10.11 which has added a lot of extra security features)? I'm also wondering how an exploit like this is made, is this something you can do with a hex editor? And how might you take something like this and insert a payload?
- Hot
- Active
-
Forum Thread:
I Want to Hack a Facebook Account.
6
Replies
9 min ago -
Forum Thread:
Pros and Cons of Parrot
14
Replies
2 hrs ago -
Forum Thread:
How to Hack into a Passkey Protected and Hidden "Ghost" USB Device That Doesn't Mount and Isn't Detected by the PC?
0
Replies
3 hrs ago -
Forum Thread:
On Which Does Kali Linux Run Best: Mac or Microsoft Computers?
0
Replies
4 hrs ago -
WIFI Hacking :
Crack WEP/WPA/WPA2 Password Without Dictionary/Bruteforce NEW METHODE : Fluxion
8
Replies
9 hrs ago -
Forum Thread:
Merry X-Mas!
2
Replies
12 hrs ago -
Forum Thread:
How to Hack My College Website ?
24
Replies
15 hrs ago -
Forum Thread:
Hack and Track People's Device Constantly Using TRAPE
27
Replies
17 hrs ago -
Forum Thread:
How Russians Developed a Genius Way to Hack Slot Machines Casinos Have No Fix For
4
Replies
19 hrs ago -
Forum Thread:
BlueBorne - Kali Linux Script?
47
Replies
1 day ago -
Forum Thread:
I Can't Crack These NTLM Hashes... Any Help?
3
Replies
1 day ago -
Forum Thread:
How to Fix 'Failed to Detect and Mount CD-ROM' Problem When Installing Kali Linux
10
Replies
1 day ago -
Forum Thread:
Mobile Hotspot Port Forwarding
17
Replies
1 day ago -
Forum Thread:
How to Install Weeman in Termux(Android) And Create a Phishing Page ?
1
Replies
2 days ago -
Forum Thread:
Hack Instagram Account Using BruteForce
181
Replies
2 days ago -
Forum Thread:
Armitage Targets Not Showing Up?
16
Replies
2 days ago -
Forum Thread:
Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce
120
Replies
2 days ago -
Forum Thread:
Kali Linux Meterpreter Will Not Connect to Victim's Computer
4
Replies
2 days ago -
Forum Thread:
Bring Down Network Using ARP Poisoning ?
1
Replies
2 days ago -
Forum Thread:
Eml to PST Conversion
4
Replies
3 days ago
-
How To:
Hack Wi-Fi & Networks More Easily with Lazy Script
-
How To:
Beginner's Guide to OWASP Juice Shop, Your Practice Hacking Grounds for the 10 Most Common Web App Vulnerabilities
-
How To:
Use Maltego to Monitor Twitter for Disinformation Campaigns
-
How To:
Securely Sync Files Between Two Machines Using Syncthing
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
-
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Hack WPA & WPA2 Wi-Fi Passwords with a Pixie-Dust Attack Using Airgeddon
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2018
-
How To:
Create a Persistent Back Door in Android Using Kali Linux:
-
How To:
Find Anyone's Private Phone Number Using Facebook
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Hack a Windows 7/8/10 Admin Account Password with Windows Magnifier
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
Hack Like a Pro:
How to Exploit and Gain Remote Access to PCs Running Windows XP
-
How To:
Hack Windows 7 (Become Admin)
3 Responses
Yes these look like Windows only exploits because of the .dll and .exe file versions in the code. I can try these at some point if I have time
Right, but at the same time, Microsoft has issued a patch for Microsoft Office 2011 and 2016 for Mac, citing these two exploits as the reason for the patch, so there must be a way to use the exploits on the OS X versions as well, but I supposed it would be somewhat different if it was based off of a dll injection.
Maybe Microsoft still used DLLs for office for mac?
Share Your Thoughts