So I had Word opened and Microsoft AutoUpdate ran and I saw that there were updates to install. Being curious as I was, I went to the link listed about the "security update" and saw that there were exploits that allowed for the possibility of remote code execution in various versions of Excel. To see the table showing which are exploitable, check this link out. That is where I also found the two CVE numbers that were associated with the version of Excel that I'm running: Excel 2016 for Mac. I went to exploit-db.com to check out the CVE's listed: CVE-2015-2520 and CVE-2015-2523. Being the curious type I am, I downloaded the linked files and saw that they were excel files. Tried opening them, but Excel just warned me saying that they were corrupt or that there may be some missing data; no crashes. I'm still pretty new to this world but I'm wondering, does that just mean that my Excel is vulnerable but requires a different approach than what was done with the sample on db-exploit? Or does it just mean that it could be OS specific (I'm running OS X 10.11 which has added a lot of extra security features)? I'm also wondering how an exploit like this is made, is this something you can do with a hex editor? And how might you take something like this and insert a payload?
- Hot
- Active
-
Forum Thread:
Mostly Need Help Binding Two Exe Files
6
Replies
4 hrs ago -
Forum Thread:
Security in IOT ( Internet of Things ) By [Mohamed Ahmed]
0
Replies
4 hrs ago -
Forum Thread:
How Is Penetration Testing Take Place Over WAN?
10
Replies
5 hrs ago -
COMPLEX MALWARE:
METAMORPHISM, POLYMORPHISM and EPO | THEORY and PRACTICAL EXAMPLES by [Mohamed Ahmed].
0
Replies
5 hrs ago -
Forum Thread:
REVERSE ENGINEERING on ANDROID | CAP 1
0
Replies
9 hrs ago -
Forum Thread:
m
2
Replies
10 hrs ago -
Forum Thread:
Hacking Terminals via Web !!!!! By: [ Mohamed Ahmed ]
0
Replies
10 hrs ago -
Forum Thread:
Network Infrastructure and Hacking Techniques [Theory Theory] [Part 1] by : Mohamed Ahmed .
0
Replies
10 hrs ago -
Forum Thread:
Ichidan, Shodan Clone in the Deep Web
0
Replies
11 hrs ago -
Forum Thread:
How to Hack a Facebook Account Using Kali Linux 2.0 ?
21
Replies
20 hrs ago -
Forum Thread:
Thoughts on Buying Hacking Gear and Anonymity
0
Replies
22 hrs ago -
Forum Thread:
Best Book to Read on Hacking
8
Replies
1 day ago -
Forum Thread:
Cdr File Damaged
0
Replies
1 day ago -
Forum Thread:
Arpspoof - No Connectivity on Physical Machine
2
Replies
2 days ago -
Forum Thread:
How to Build Cheapest Password Cracker on Multiple GPUs?
0
Replies
2 days ago -
Forum Thread:
Active White-Hat Forums?
14
Replies
2 days ago -
Forum Thread:
Apis for Trojans [ a gift from me ]
0
Replies
3 days ago -
Forum Thread:
Creating a Ransomware for Android from 0! By [ Mohamed Ahmed ]
0
Replies
3 days ago -
Forum Thread:
Hack Cheating Wife's Windows 7 Admin Password
12
Replies
3 days ago -
Forum Thread:
BlueBorne - Kali Linux Script?
9
Replies
3 days ago
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How To:
Hack Forum Accounts with Password-Stealing Pictures
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
How To:
Exploring Kali Linux Alternatives: How to Get Started with BlackArch, a More Up-to-Date Pentesting Distro
-
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
-
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
-
How to Hack Wi-Fi:
Capturing WPA Passwords by Targeting Users with a Fluxion Attack
-
How To:
Use a Virtual Burner Phone to Protect Your Identity & Security
-
How To:
Install Kali Live on a USB Drive (With Persistence, Optional)
-
Hack Like a Pro:
How to Crack Passwords, Part 1 (Principles & Technologies)
-
Hack Like a Pro:
How to Secretly Hack Into, Switch On, & Watch Anyone's Webcam Remotely
-
How To:
Successfully Hack a Website in 2016!
-
How To:
Hack WPA WiFi Passwords by Cracking the WPS PIN
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Hack Android Using Kali (Remotely)
-
The Hacks of Mr. Robot:
How to Spy on Anyone's Smartphone Activity
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
Hack Like a Pro:
How to Hack Facebook, Part 2 (Facebook Password Extractor)
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
3 Responses
Yes these look like Windows only exploits because of the .dll and .exe file versions in the code. I can try these at some point if I have time
Right, but at the same time, Microsoft has issued a patch for Microsoft Office 2011 and 2016 for Mac, citing these two exploits as the reason for the patch, so there must be a way to use the exploits on the OS X versions as well, but I supposed it would be somewhat different if it was based off of a dll injection.
Maybe Microsoft still used DLLs for office for mac?
Share Your Thoughts