CVE-2017-11826 analysis in Depth

CVE-2017-11826 is a memory corruption vulnerability that allows a remote attacker to execute arbitrary code by tricking a victim into opening a specially crafted file. The problem affects all supported versions of MS Office.

Gradiant ‘Security and Privacy team has received and analysed a sample of an office document that, instead of incorporating a malicious macro, exploits the 0-day vulnerability identified as CVE-2017-11826 which patch was published on October 17, 2017. After analysis The affected content was classified as a type confusion.

This article shows an analysis of the office document. The research team noticed a slight increase in the number of malicious office documents that do not use macros. Therefore it is important to constantly update the software.

More.

DISCLAIMER: THIS POST IS FOR INFORMATIONAL PURPOSES ONLY AND IS NOT TO BE CONSIDERED LEGAL ADVICE ON ANY SUBJECT MATTER. DIGITAL FORENSICS CORP. IS NOT A LAWFIRM AND DOES NOT PROVIDE LEGAL ADVICE OR SERVICES. By viewing posts, the reader understands there is no attorney-client relationship, the post should not be used as a substitute for legal advice from a licensed professional attorney, and readers are urged to consult their own legal counsel on any specific legal questions concerning a specific situation.

News

CVE-2017-11826 analysis in Depth

Read Next

USA Passes Take It Down Act: Fighting NCII at the Federal Level

Operation Artemis: FBI Arrests 22 in International Sextortion Crackdown

Digital Forensics Corp. Launches Pro Bono Initiative to Combat Sextortion Targeting Minors

Digital Forensics Corp. Launches 2025 Sextortion Study to Uncover the True Scope of a Growing Cybercrime