Full title: Microsoft Office Word MSHTML Remote Code Execution Exploit
Category: local exploits
Platform: windows
This Metasploit module creates a malicious docx file that when opened in Word on a vulnerable Windows system will lead to code execution. This vulnerability exists because an attacker can craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine.
# 0day.today @ http://0day.today/