NOMISEC-notherealhazard/follina-CVE-2022-30190

NOMISEC WORKING POC

Exploit for CVE-2022-30190 - Microsoft Office Word MSDTJS

AI Analysis

This PoC exploits CVE-2022-30190 (Follina) by generating malicious Word/RTF documents that trigger remote code execution via the MSDT URL protocol handler. It supports both direct command execution and reverse shell payloads.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1204.002 - Malicious File T1195.002 - Compromise Software Supply Chain

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 17

https://github.com/notherealhazard/follina-CVE-2022-30190

Stars 0

Forks 0

Last Push Jun 15, 2022

Authors

notherealhazard hazard

Vulnerability

CVE-2022-30190

Microsoft Office Word MSDTJS

HIGH KEV

CVSS 7.8