CVE-2017-8759

This exploit leverages a Word macro to download a malformed WSDL file, triggering a parsing flaw in .NET that executes mshta.exe, which then runs PowerShell commands to launch mspaint.exe as a proof of concept.

This repository contains a Python-based exploit toolkit for CVE-2017-8759, a Microsoft .NET Framework RCE vulnerability. It generates malicious RTF files and delivers payloads (e.g., Meterpreter) via a remote server, leveraging the SOAP WSDL parser flaw.

This repository contains a proof-of-concept exploit for CVE-2017-8759, a vulnerability in Microsoft .NET Framework's WSDL parser. The exploit involves a Word macro that downloads a malformed text file, triggering a parsing error that leads to the execution of arbitrary commands via mshta.exe and PowerShell.

This repository provides a writeup and references for weaponizing CVE-2017-8759, a .NET Framework vulnerability. It includes links to external resources for exploit details and credits the authors for their research.

This repository provides a detailed writeup and exploitation techniques for CVE-2017-8759, focusing on how the vulnerability in the .NET framework's WSDL parsing can be exploited via PowerPoint files (PPTX/PPSX) using OLE moniker techniques. It explains the background, exploitation steps, and patch analysis but does not include actual exploit code.

This is a working exploit PoC for CVE-2017-8759, which generates a malicious RTF file embedding a .NET serialization payload. The payload is designed to exploit a vulnerability in Microsoft .NET Framework's handling of OLE objects in RTF files.

This repository contains two exploit versions for CVE-2017-8759, a .NET deserialization vulnerability. The exploits either download a remote DLL or use an embedded DLL for execution, demonstrating remote code execution (RCE) capabilities.

This repository contains a README describing CVE-2017-8759, a remote code execution vulnerability in Microsoft .NET Framework's handling of untrusted input in SOAP WSDL. The vulnerability is exploitable via malicious RTF documents in Microsoft Word.

This repository contains a Python-based exploit toolkit for CVE-2017-8759, a Microsoft .NET Framework RCE vulnerability. It generates malicious RTF files and can deliver payloads via HTTP, leveraging the SOAP WSDL parser flaw.

This repository provides a detailed writeup on CVE-2017-8759, a .NET Framework RCE vulnerability exploitable via malicious RTF/HTA files. It describes the attack process, vulnerable versions, and references but does not include exploit code.

The repository contains only a README.md file with minimal information about CVE-2017-8759, lacking any exploit code or technical details. It appears to be a placeholder or incomplete submission.

This repository contains a Python script that generates a malicious RTF file exploiting CVE-2017-8759, a .NET Framework RCE vulnerability. It supports both generating the exploit file and delivering payloads via a local server.

This repository contains a Python-based exploit toolkit for CVE-2017-8759, a Microsoft .NET Framework RCE vulnerability. It generates malicious RTF files and delivers payloads via a local server, supporting Metasploit integration.

This repository is a stub that redirects to another repository for the actual exploit code. It contains no functional exploit code or technical details.

The repository contains only a README.md file with minimal content, indicating it may be a placeholder or incomplete. No exploit code or technical details are provided.

This repository provides instructions for exploiting CVE-2017-8759, a .NET Framework RCE vulnerability, by modifying a malicious HTA file and a text file to point to an attacker-controlled domain. It lacks actual exploit code but includes setup guidance.

This repository contains a functional exploit for CVE-2017-8759, leveraging a Word macro to download a malformed WSDL file, triggering mshta.exe to execute PowerShell commands. The provided server.py hosts the necessary files (exploit.txt and cmd.hta) to demonstrate the exploit chain.

This repository contains a functional Python script that exploits CVE-2017-8759, a .NET Framework RCE vulnerability, by generating malicious RTF files and delivering payloads. The toolkit supports both remote and local payload execution, with clear usage instructions and command-line arguments.

The repository lacks actual exploit code and instead redirects users to external sources (blog post, YouTube video) for details. It mentions weaponization but provides no technical implementation or PoC code.