Maldocs ­Of Word And Excel: Vigor Of The Ages


Chasing new exploits, vulnerabilities, and threats is the way to go in the ever-changing cybercrime landscape. However, in a constant flow of information, the focus on yesterday’s highlights is low: every day, new CVEs occur, and new threats emerge. With this state of affairs, old menaces can be easily overlooked and still used by the attackers, even considering the exploits’ venerable age. In this article, Check Point researchers focus on 3 old and well-known CVEs used in Microsoft Word and Microsoft Excel:

  • CVE-2017-11882 (technical analysis by Palo Alto)
  • CVE-2017-0199 (technical analysis by Perception Point)
  • CVE-2018-0802 (technical analysis by Check Point Software Technologies)

Read more…
Source: Check Point