BDU%3A2017-01034 — Vulnetix

BDU%3A2017-01034 PUBLISHED CVSS 9.300000190734863 CRITICAL

Уязвимость операционной системы Windows и пакета программ Microsoft Office, позволяющая нарушителю выполнить произвольный код

Risk Scores

CVSS 2.0

9.300000190734863

Affected Products

Vendor	Product	Versions
Microsoft Corp	Windows Vista Service Pack 2, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows 8.1, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, Microsoft Office 2007 Service Pack 3, Microsoft Office 2016

Exploit Intelligence

CVE-2017-0199 (github-poc-repo)
Exploit toolkit CVE-2017-0199 - v2.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / any other payload to victim without any complex configuration. (github-poc-repo)
Exploit toolkit for vulnerability RCE Microsoft RTF (github-poc-repo)
Exploit toolkit CVE-2017-0199 - v2.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter payload to victim without any complex configuration. (github-poc-repo)
Quick and dirty fix to OLE2 executing code via .hta (github-poc-repo)
An exploit implementation for RCE in RTF & DOCs (CVE-2017-0199) (github-poc-repo)
joke998/Cve-2017-0199 (github-poc-repo)
Cve-2017-0199 (github-poc-repo)
sUbc0ol/Microsoft-Word-CVE-2017-0199- (github-poc-repo)
viethdgit/CVE-2017-0199 (github-poc-repo)

…and 47 more exploits

Timeline

Apr 27, 2017 CVE Published
Jul 1, 2019 PoC Published
Jul 13, 2019 PoC Published
Jul 2, 2021 PoC Published
Oct 21, 2021 CVE Updated
Aug 29, 2024 PoC Published
Feb 13, 2025 PoC Published
Mar 18, 2026 Security Advisory

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›