METASPLOIT-modules/exploits/windows/fileformat/word_msdtjs_rce.rb

METASPLOIT ruby WORKING POC

Exploit for CVE-2022-30190 - Microsoft Office Word MSDTJS

AI Analysis

This Metasploit module generates a malicious Microsoft Word document that exploits CVE-2022-30190 (Follina) by leveraging the remote template feature to fetch an HTML document and execute PowerShell code via the ms-msdt scheme.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1204.002 - Malicious File T1059.001 - PowerShell T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Metasploit

Type poc

Platform win

Language ruby

Rank excellent

Files 1

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/word_msdtjs_rce.rb

Authors

mekhalleh (RAMELLA Sébastien) bwatters-r7 nao sec

Vulnerability

CVE-2022-30190

Microsoft Office Word MSDTJS

HIGH KEV

CVSS 7.8