So I had Word opened and Microsoft AutoUpdate ran and I saw that there were updates to install. Being curious as I was, I went to the link listed about the "security update" and saw that there were exploits that allowed for the possibility of remote code execution in various versions of Excel. To see the table showing which are exploitable, check this link out. That is where I also found the two CVE numbers that were associated with the version of Excel that I'm running: Excel 2016 for Mac. I went to exploit-db.com to check out the CVE's listed: CVE-2015-2520 and CVE-2015-2523. Being the curious type I am, I downloaded the linked files and saw that they were excel files. Tried opening them, but Excel just warned me saying that they were corrupt or that there may be some missing data; no crashes. I'm still pretty new to this world but I'm wondering, does that just mean that my Excel is vulnerable but requires a different approach than what was done with the sample on db-exploit? Or does it just mean that it could be OS specific (I'm running OS X 10.11 which has added a lot of extra security features)? I'm also wondering how an exploit like this is made, is this something you can do with a hex editor? And how might you take something like this and insert a payload?
- Hot
- Active
-
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
56
Replies
2 hrs ago -
Forum Thread:
Eml to PST Conversion
11
Replies
12 hrs ago -
Forum Thread:
Tools for Beginner Hacker
2
Replies
20 hrs ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
17
Replies
1 day ago -
Forum Thread:
How to Use Exploits Written in C Code
6
Replies
3 days ago -
Forum Thread:
How to Hack My College Website ?
20
Replies
5 days ago -
Forum Thread:
Problems with Internet Connection in Kali Linux After Changing to Static Ip Address
4
Replies
6 days ago -
Forum Thread:
SQL INJECTION
5
Replies
1 wk ago -
Forum Thread:
Popcorntime Alternative?
4
Replies
1 wk ago -
Forum Thread:
How Does Someone Attack Account by Just Having Their @Username ? The Application Is Kik!
7
Replies
1 wk ago -
Forum Thread:
I Need Help in Hacking a Gmail Account.
25
Replies
1 wk ago -
Forum Thread:
Whatsapp Hack?
19
Replies
1 wk ago -
Forum Thread:
HACKING GMAIL
3
Replies
1 wk ago -
Forum Thread:
I Need Your Response for a Homework Assignment.
7
Replies
1 wk ago -
Introduction:
Cffe
1
Replies
2 wks ago -
Forum Thread:
How to View Your Child's What's App And Many More!
3
Replies
3 wks ago -
Forum Thread:
Can some help me how to hack into a FB account to that was hacked. Trying to get a friends account back. Cheers.
6
Replies
3 wks ago -
Forum Thread:
Gaining Access into the Victim's Whatsapp on Android
13
Replies
3 wks ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
47
Replies
1 mo ago -
Forum Thread:
Parrot Security Os Problem......
15
Replies
1 mo ago
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
-
How To:
Hack Metasploitable 2 Part 1
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Use SQL Injection to Run OS Commands & Get a Shell
-
Tutorial:
DNS Spoofing
-
Hack Like a Pro:
How to Hack Your School's Server to Download Final Exam Answers
-
Android for Hackers:
How to Exfiltrate WPA2 Wi-Fi Passwords Using Android & PowerShell
-
How To:
Wardrive with the Kali Raspberry Pi to Map Wi-Fi Devices
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Scan Websites for Interesting Directories & Files with Gobuster
-
How To:
Easily Detect CVEs with Nmap Scripts
-
Hack Like a Pro:
How to Find Directories in Websites Using DirBuster
3 Responses
Yes these look like Windows only exploits because of the .dll and .exe file versions in the code. I can try these at some point if I have time
Right, but at the same time, Microsoft has issued a patch for Microsoft Office 2011 and 2016 for Mac, citing these two exploits as the reason for the patch, so there must be a way to use the exploits on the OS X versions as well, but I supposed it would be somewhat different if it was based off of a dll injection.
Maybe Microsoft still used DLLs for office for mac?
Share Your Thoughts