Exploiting CVE-2024-21413 Microsoft Outlook Remote Code Execution

Поделиться
HTML-код
  • Опубликовано: 6 сен 2024
  • This script presents a proof of concept (PoC) for CVE-2024-21413, a significant security vulnerability discovered in Microsoft Outlook with a CVSS of 9.8. Termed the #MonikerLink bug, this vulnerability has far-reaching implications, including the potential leakage of local NTLM information and the possibility of remote code execution. Moreover, it highlights an attack vector that could bypass Office Protected View, thereby extending its threat to other Office applications
    Exploit link : github.com/Mdu...
    tags:
    #CyberSecurity
    #EthicalHacking
    #InfoSec
    #Hacking
    #PenetrationTesting
    #CyberAttack
    #BugBounty
    #CyberAware
    #CyberDefense
    #VulnerabilityAssessment
    #ITSecurity
    Copyright Disclaimer under Section 107 of the copyright act 1976, allowance is made for fair use for purposes such as criticism, comment, news reporting, scholarship, and research. Fair use is a use permitted by copyright statute that might otherwise be infringing. Non-profit, educational or personal use tips the balance in favour of fair use.
    ---
    This Channel is meant for educational purposes only and doesn't promote or encourage any illegal activities.

Комментарии • 5

  • @jyothikiran1558
    @jyothikiran1558 6 месяцев назад

    Impact of this vulnerability

    • @Thecybermonkey
      @Thecybermonkey  6 месяцев назад

      As you see in the Poc the vulnerability dumps the NTLM hash and can be chained to RCE which is critical

  • @m9k9veliii
    @m9k9veliii Месяц назад

    How come the IP address the poison answer was sent to is different from the windows IP address? Windows IP ( Delloite is 192.168.233.83), the poison answer was sent to 192.168.233.254

  • @kartheekkandalam2274
    @kartheekkandalam2274 5 месяцев назад

    I am using kali linux VM ware to run the exploit and in windows machine with vulnerable outlook version i tried this in same laptop …. But not able to capture hash…. 😢
    Please help me

    • @Thecybermonkey
      @Thecybermonkey  4 месяца назад

      Follow the video carefully use responder to capture the hash

Следующие
Автовоспроизведение
Where People Go When They Want to Hack You34:40Where People Go When They Want to Hack You
Where People Go When They Want to Hack YouCyberNews
Просмотров 1,7 млн
Click with Caution: The Moniker Link Vulnerability (CVE-2024-21413) Exposed | Threat Snapshot16:39Click with Caution: The Moniker Link Vulnerability (CVE-2024-21413) Exposed | Threat Snapshot
Click with Caution: The Moniker Link Vulnerability (CVE-2024-21413) Exposed | Threat SnapshotSnapAttack
Просмотров 1,9 тыс.
SHODAN Explained! (It's Scary Easy to do) | Let's Hack7:58SHODAN Explained! (It's Scary Easy to do) | Let's Hack
SHODAN Explained! (It's Scary Easy to do) | Let's HackLet's Hack
Просмотров 307 тыс.
The first person to make a podcast02:29The first person to make a podcast
The first person to make a podcastRDCworld1
Просмотров 670 тыс.
The Proposal of Her Dreams: She Said Yes!08:08The Proposal of Her Dreams: She Said Yes!
The Proposal of Her Dreams: She Said Yes!Charles & Alyssa Forever
Просмотров 230 тыс.
Gregg Bissonette Hears System Of A Down For The First Time15:25Gregg Bissonette Hears System Of A Down For The First Time
Gregg Bissonette Hears System Of A Down For The First TimeDrumeo
Просмотров 584 тыс.
United v Liverpool Fallout & Gary and Carra Clash Again! | Stick to Football EP 4751:19United v Liverpool Fallout & Gary and Carra Clash Again! | Stick to Football EP 47
United v Liverpool Fallout & Gary and Carra Clash Again! | Stick to Football EP 47The Overlap
Просмотров 1,2 млн
CVE-2024-21413 - Microsoft Outlook Remote Code Execution Vulnerability POC2:38CVE-2024-21413 - Microsoft Outlook Remote Code Execution Vulnerability POC
CVE-2024-21413 - Microsoft Outlook Remote Code Execution Vulnerability POCzalepentester
Просмотров 9 тыс.
Hacking my lab Exchange 2019 with Outlook CVE [CVE-2024-21413 - Educational Purposes Only]5:16Hacking my lab Exchange 2019 with Outlook CVE [CVE-2024-21413 - Educational Purposes Only]
Hacking my lab Exchange 2019 with Outlook CVE [CVE-2024-21413 - Educational Purposes Only]Edward van Biljon
Просмотров 279
Hacking Windows TrustedInstaller (GOD MODE)31:07Hacking Windows TrustedInstaller (GOD MODE)
Hacking Windows TrustedInstaller (GOD MODE)John Hammond
Просмотров 596 тыс.
$2900 Bounty SQL Injection Bug Bounty POC 2024 | Private Bug Bounty Program3:32$2900 Bounty SQL Injection Bug Bounty POC 2024 | Private Bug Bounty Program
$2900 Bounty SQL Injection Bug Bounty POC 2024 | Private Bug Bounty ProgramAbhishek Morla
Просмотров 8 тыс.
Advanced Penetration Testing | OSCP Lab Practice| Part 136:03Advanced Penetration Testing | OSCP Lab Practice| Part 1
Advanced Penetration Testing | OSCP Lab Practice| Part 1The Cyber Monkey
Просмотров 180
Why Cybersecurity Training is a SCAM10:37Why Cybersecurity Training is a SCAM
Why Cybersecurity Training is a SCAMTechnical Institute of America
Просмотров 149 тыс.
$15,000 bounty : Remote Code Execution via File Upload Vulnerability | POC | Bug Bounty 20233:27$15,000 bounty : Remote Code Execution via File Upload Vulnerability | POC | Bug Bounty 2023
$15,000 bounty : Remote Code Execution via File Upload Vulnerability | POC | Bug Bounty 2023Abhishek Morla
Просмотров 33 тыс.
$2500 bounty: htaccess overwrite file upload vulnerability | POC | Bug Bounty 2024 | private program5:04$2500 bounty: htaccess overwrite file upload vulnerability | POC | Bug Bounty 2024 | private program
$2500 bounty: htaccess overwrite file upload vulnerability | POC | Bug Bounty 2024 | private programAbhishek Morla
Просмотров 5 тыс.
Hacking 101: Everything You Need To Know13:32Hacking 101: Everything You Need To Know
Hacking 101: Everything You Need To KnowPrivacy Matters
Просмотров 334 тыс.
Modus males sekolah00:14Modus males sekolah
Modus males sekolahfitrop
Просмотров 10 млн
Аруси чахондида Лахзахои Гуворро бо Гр Арабшо сахнаи нав 202405:05Аруси чахондида Лахзахои Гуворро бо Гр Арабшо сахнаи нав 2024
Аруси чахондида Лахзахои Гуворро бо Гр Арабшо сахнаи нав 2024Qurbon Negmatov
Просмотров 116 тыс.
Интеллект ИЗ НИЧЕГО. РАЗУМ РОЯ - ТОПЛЕС45:09Интеллект ИЗ НИЧЕГО. РАЗУМ РОЯ — ТОПЛЕС
Интеллект ИЗ НИЧЕГО. РАЗУМ РОЯ - ТОПЛЕСТОПЛЕС
Просмотров 1,8 млн
Бабулька Granny пытается поймать Nuggets Gegagedigedagedago , но не тут то было!00:33Бабулька Granny пытается поймать Nuggets Gegagedigedagedago , но не тут то было!
Бабулька Granny пытается поймать Nuggets Gegagedigedagedago , но не тут то было!Фани Хани
Просмотров 263 тыс.
ВОТ ЧТО МЫ КУПИЛИ НА ALIEXPRESS11:28ВОТ ЧТО МЫ КУПИЛИ НА ALIEXPRESS
ВОТ ЧТО МЫ КУПИЛИ НА ALIEXPRESSSlivkiShow
Просмотров 857 тыс.
Пассат валит на все бабки! Готовим к гонке с Синдикатом!1:41:15Пассат валит на все бабки! Готовим к гонке с Синдикатом!
Пассат валит на все бабки! Готовим к гонке с Синдикатом!ИЛЬДАР АВТО-ПОДБОР
Просмотров 2 млн
ВИРУСНЫЕ ВИДЕО / Кот делает блины 😅00:25ВИРУСНЫЕ ВИДЕО / Кот делает блины 😅
ВИРУСНЫЕ ВИДЕО / Кот делает блины 😅Светлый Voice
Просмотров 203 тыс.
Вопрос Ребром - Михаил Шуфутинский51:31Вопрос Ребром - Михаил Шуфутинский
Вопрос Ребром - Михаил ШуфутинскийGazgolder
Просмотров 1,4 млн