CVE-2017-8570

This exploit leverages CVE-2017-8570 (Composite Moniker vulnerability) to drop an SCT file into the %TEMP% directory and execute it via Packager.dll. It generates a malicious RTF file for delivery.

This repository contains a functional PoC exploit for CVE-2017-8570, leveraging the Packager.dll technique to drop an SCT file into the %TEMP% directory and execute it via a Composite Moniker vulnerability in Microsoft Office.

This repository contains a Python tool that generates a malicious PowerPoint Slide Show (.ppsx) file exploiting CVE-2017-8570. The tool embeds a remote XML file containing a JScript payload that downloads and executes an arbitrary executable via PowerShell.

This repository contains a functional PoC for CVE-2017-8570, leveraging the Packager.dll trick to drop an SCT file into %TEMP% and execute it via a Composite Moniker vulnerability in Microsoft Office.

This repository provides a proof-of-concept exploit for CVE-2017-8570, a remote code execution vulnerability in Microsoft Office. The exploit generates a malicious .ppsx file that, when opened, uses PowerShell to download and execute a payload, resulting in a Meterpreter session.

This is a Python-based exploit for CVE-2017-8570, which leverages a vulnerability in Microsoft Office's handling of OLE objects embedded in RTF files. The exploit generates a malicious RTF file that, when opened, executes arbitrary code via a crafted OLE package.

This repository contains a functional PoC exploit for CVE-2017-8570, leveraging the Packager.dll technique to drop an SCT file into the %TEMP% directory and execute it via a Composite Moniker vulnerability in Microsoft Office.

This repository contains a Python-based exploit toolkit for CVE-2017-8570, a Microsoft Office RCE vulnerability. It generates malicious PPSX files and can deliver payloads via SCT files or direct execution.

This repository contains a functional Python script that generates a malicious RTF file exploiting CVE-2017-8570 via the Packager.dll trick to drop and execute an SCT file in the %TEMP% directory. The exploit leverages the Composite Moniker vulnerability to bypass patches for CVE-2017-0199.

This repository contains a functional Python script that exploits CVE-2017-8570, a Microsoft Office PPSX RCE vulnerability. The toolkit generates malicious PPSX files and delivers payloads (local or remote) via SCT files, supporting Metasploit integration.

This repository contains a functional Python script that generates a malicious RTF file exploiting CVE-2017-8570 via the Composite Moniker vulnerability. It uses the Packager.dll trick to drop an SCT file into the %TEMP% directory and execute it.