VDB

CNVD-2021-69088

CNVD-2021-69088 PUBLISHED

MSHTML(又称为Trident)是微软旗下的Internet Explorer浏览器引擎,虽然MHTML主要用于已被弃用的Internet Explorer浏览器,但该组件也用于Office应用程序,以在 Word、Excel或PowerPoint文档中呈现Web托管的内容。 Microsoft MSHTML存在远程代码执行漏洞。攻击者可利用漏洞通过制作带有恶意 ActiveX控件的Microsoft Office文档并诱导用户打开此文档来利用此漏洞。成功利用此漏洞的远程攻击者可在目标系统上以该用户权限执行任意代码。

Timeline

  • Jul 2, 2021 PoC Published
  • Sep 8, 2021 CVE ID Reserved
  • Sep 8, 2021 CVE Published
  • Sep 11, 2021 PoC Published
  • Sep 23, 2021 PoC Published
  • Sep 16, 2022 PoC Published
  • Dec 8, 2023 PoC Published
  • Mar 1, 2024 PoC Published
  • Jul 17, 2024 PoC Published
  • Dec 12, 2024 PoC Published
  • Dec 3, 2025 PoC Published
  • Dec 18, 2025 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›