Microsoft Office Excel 2010 Crash PoC

hathat · November 4, 2012

Title     :  Microsoft Office Excel 2010 memory corruption
Version   :  Microsoft Office professional Plus 2010
Date      :  2012-10-27
Vendor    :  http://office.microsoft.com
Impact    :  Med/High
Contact   :  coolkaveh [at] rocketmail.com
Twitter   :  @coolkaveh
tested    :  XP SP3 ENG
###############################################################################
Bug :
----
memory corruption during the handling of the xls files a context-dependent attacker
can execute arbitrary code.
----
################################################################################
(b4c.1350): Access violation - code c0000005 (first chance)
First chance exceptions are reported before any exception handling.
This exception may be expected and handled.
eax=00000584
ebx=00135070
ecx=00001000
edx=0000105f
esi=06a80800
edi=00000040
eip=301ce0d0
esp=001302f0
ebp=00131d6c iopl=0         nv up ei pl zr na pe nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00010246
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for Excel.exe -
Excel!Ordinal40+0x1ce0d0:
301ce0d0 668b5008        mov     dx,word ptr [eax+8]      ds:0023:0000058c=????
################################################################################

Proof of concept included.

Zippyshare.com - POC.rar

http://www.exploit-db.com/sploits/22330.rar

Sursa Microsoft Office Excel 2010 Crash PoC

Sign In

Microsoft Office Excel 2010 Crash PoC

Recommended Posts

hathat

Join the conversation

Browse

Activity

Pages