CVE-2018-8174

This is a functional exploit for CVE-2018-8174, a VBScript engine remote code execution vulnerability in Internet Explorer. The exploit uses memory corruption techniques to bypass DEP and CFG, ultimately executing shellcode to achieve remote code execution.

This repository provides a detailed analysis and references for CVE-2018-8174, a VBScript engine remote code execution vulnerability. It includes links to external PoCs and technical writeups but does not contain direct exploit code.

This is a Metasploit module that generates a malicious RTF file exploiting CVE-2018-8174, a VBScript engine vulnerability in Microsoft Office. The exploit uses a combination of memory corruption and ROP techniques to achieve remote code execution.

This is a working exploit for CVE-2018-8174, a VBScript engine remote code execution vulnerability. The PoC generates a malicious RTF file with embedded OLE objects and a VBScript payload to trigger the vulnerability.

This repository contains a detailed analysis of CVE-2018-8174, a VBScript engine vulnerability involving use-after-free and type confusion. The writeup explains the exploit mechanism, including memory manipulation and object reference handling.

This repository provides a detailed writeup and references for CVE-2018-8174, a VBScript engine remote code execution vulnerability. It includes links to external PoCs and technical analyses but does not contain direct exploit code.

This is a Python script that generates an HTML file exploiting CVE-2019-0768 and CVE-2018-8174 in Internet Explorer 11 via VBScript. It uses Metasploit's msfvenom to generate a reverse TCP shell payload and embeds it in the HTML file for delivery.

This PoC generates an RTF file exploiting CVE-2018-8174, a VBScript engine vulnerability in Microsoft Word/WordPad via IE. It embeds a malicious OLE object pointing to a remote HTML file hosting the exploit.

This repository contains a writeup describing the Rig Exploit Kit's use of CVE-2018-8174, a VBScript engine vulnerability, to achieve remote code execution via malvertising and hidden iframes. The exploit delivers shellcode leading to a second-stage downloader (SmokeLoader variant) and ultimately a Monero miner payload.

This is a working exploit PoC for CVE-2018-8174, a VBScript engine remote code execution vulnerability. The exploit uses a crafted RTF document with embedded malicious HTML and VBScript to achieve arbitrary code execution.

This is a working exploit for CVE-2018-8174, a VBScript engine remote code execution vulnerability. The PoC generates a malicious RTF file with an embedded OLE object containing a VBScript payload designed to exploit the vulnerability.

This is a Metasploit module that generates a malicious RTF file exploiting CVE-2018-8174, a VBScript engine vulnerability in Microsoft Office. The exploit leverages memory corruption to achieve remote code execution via a crafted HTML payload.

This repository contains a functional Python script that generates a malicious RTF file exploiting CVE-2018-8174, a VBScript engine vulnerability in Microsoft Word and WordPad. The exploit leverages an embedded OLE object to trigger remote code execution via a crafted HTML payload hosted on a web server.