Ring Ø Labs DOES NOT advocate using any of the malware, techniques, or information presented here for harm and doing so may violate the law. These topics are for mitigation and educational purposes only. Read more about us here

Saturday, May 26, 2018

Analysis CVE-2017-11882 Microsoft Equation Editor Exploit




Today's video covers how to analyze CVE 2017-11882 Microsoft Office Equation Editor Buffer  Overflow. We also touch on three distinct methods to debug problematic programs using assembly-fu, registry hacks, and gflag magic.






WARNING:
USE OF INFORMATION IN THIS REPORT FOR ANY ACTION AGAINST A MACHINE WITHOUT THE OWNERS CONSENT MAY VIOLATE THE LAW.


DETAILS


Filename
7ccd19d3dc34c6dbee600961d73cee0c.rtf
Packer
None
Hash
a1fcfd23988726f5a52f173afefb9652
Type
Simple Stack Based Buffer Overflow
Video