proof of concept to CVE-2022-30190 (follina)
-
Updated
Jun 11, 2022 - Python
proof of concept to CVE-2022-30190 (follina)
Reference of code has been taken from https://github.com/JohnHammond/msdt-follina/blob/main/follina.py. I have given the explanation of the code and made the code a bit simplified.
The Follina vulnerability in a Windows support tool can be easily exploited by a specially crafted Word document. The lure is outfitted with a remote template that can retrieve a malicious HTML file and ultimately allow an attacker to execute Powershell commands within Windows.
A simple Follina RTF and DOCX generator
Remote Access Shell for Windows (based on cve-2022-30190)
Proof of Concept of CVE-2022-30190
Exploit Microsoft Zero-Day Vulnerability Follina (CVE-2022-30190)
POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina
Add a description, image, and links to the follina topic page so that developers can more easily learn about it.
To associate your repository with the follina topic, visit your repo's landing page and select "manage topics."