Eduardo Braun Prado

12 exploits Active since Mar 2015
EIP-2026-119543 EXPLOITDB text WORKING POC
Microsoft Word 2007 (x86) - Information Disclosure
EIP-2026-118890 EXPLOITDB text WRITEUP
Microsoft Windows VCF or Contact' File - URL Manipulation-Spoof Arbitrary Code Execution
CVE-2016-0185 EXPLOITDB HIGH text WORKING POC
Microsoft Windows 7 - Remote Code Execution
Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted Media Center link (aka .mcl) file, aka "Windows Media Center Remote Code Execution Vulnerability."
CVSS 7.8
CVE-2015-6131 EXPLOITDB text WORKING POC
Microsoft Windows 7 - Improper Input Validation
Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted .mcl file, aka "Media Center Library Parsing RCE Vulnerability."
CVE-2015-0097 EXPLOITDB text SUSPICIOUS
Microsoft Excel - Remote Code Execution
Microsoft Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Excel 2010 SP2, PowerPoint 2010 SP2, and Word 2010 SP2 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Word Local Zone Remote Code Execution Vulnerability."
EIP-2026-117836 EXPLOITDB text WORKING POC
Real Player v.20.0.8.310 G2 Control - 'DoGoToURL()' Remote Code Execution (RCE)
EIP-2026-117835 EXPLOITDB text WORKING POC
Real Player 16.0.3.51 - 'external::Import()' Directory Traversal to Remote Code Execution (RCE)
CVE-2018-8413 EXPLOITDB HIGH c WORKING POC
Windows Theme API - RCE
A remote code execution vulnerability exists when "Windows Theme API" does not properly decompress files, aka "Windows Theme API Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
CVSS 7.8
EIP-2026-117571 EXPLOITDB text WORKING POC
Microsoft Windows Media Center WMV / WMA 6.3.9600.16384 - Code Execution
CVE-2019-0541 EXPLOITDB HIGH text SUSPICIOUS
Microsoft Internet Explorer - Command Injection
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Internet Explorer 10, Office 365 ProPlus.
CVSS 8.8
CVE-2017-0199 EXPLOITDB HIGH text WORKING POC
Microsoft Office Word Malicious Hta Execution
Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API."
CVSS 7.8
EIP-2026-115745 EXPLOITDB text WORKING POC
Microsoft Office Groove - 'Workspace Shortcut' Arbitrary Code Execution