I'm curious what mitigations protect against the exploit for CVE-2018-8174 seen in the wild. Did anybody happen to grab a copy of the actual exploit 15eafc24416cbf4cfe323e9c271e71e7 (as opposed to the RTF loaders)?
-
-
Replying to @wdormann
This PoC (from Kaspersky's blog) https://pastebin.com/Be3xFBBn triggers the vulnerability in IE8, IE10.
1 reply 0 retweets 1 like
Replying to @JeromeSegura
Yeah, I've got a crashing PoC already. But that doesn't help anything with regard to testing exploit mitigations. I'm looking for the exploit.
11:02 AM - 10 May 2018
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.