Geek Feed

New Specula tool uses Outlook for remote code execution in Windows

July 31, 2024July 31, 2024 geekfeed0Tagged Command and Control, cybersecurity, microsoft, microsoft outlook, outlook, Post-Exploitation, Specula, windows

Microsoft Outlook can be turned into a C2 beacon to remotely execute code, as demonstrated by a new red team post-exploitation framework named “Specula,” released today by cybersecurity firm TrustedSec. This C2 framework works by creating a custom Outlook Home Page using WebView by exploiting CVE-2017-11774, an Outlook security feature bypass vulnerability patched in October 2017. “In […]

3 mins read

Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability

July 13, 2024July 13, 2024 geekfeed0Tagged CVE-2024-30103, CVE-2024-38021, cybersecurity, exploit, microsoft, microsoft outlook, outlook, rce flaw, vulnerability

Security researchers have uncovered a critical vulnerability, CVE-2024-38021, affecting most Microsoft Outlook applications. This zero-click remote code execution (RCE) vulnerability, now patched by Microsoft, did not require any authentication, setting it apart from the previously discovered CVE-2024-30103, which required at least an NTLM token. If exploited, CVE-2024-38021 could lead to data breaches, unauthorized access and […]

1 min read