How can I recurrent this vulnerable?

Question

How can I recurrent this vulnerable?

dc3l1ne opened this issue 8 years ago · 3 comments

I notice there is a http link hyoeyeep.ws,and I modified hosts file to let this domain point to local server.On the server,I put the template.doc and change its content-type to application/hta.I opened the bin file as doc or rtf,but nothing happened.Which step that I missed?

Answer 1 · 2017-04-15T04:01:30.000Z

Please read rapid7/metasploit-framework#8220. A new ole object is needed.

Answer 2 · 2017-04-15T09:15:13.000Z

https://www.mdsec.co.uk/2017/04/exploiting-cve-2017-0199-hta-handler-vulnerability/

Answer 3 · 2017-04-17T07:17:50.000Z

Close it. A metasploit module is created for vulnerability reproduction.