支持本站 — 捐款将帮助我们持续运营

目标: 1000 元,已筹: 1000

100.0%
立即捐款
获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2023-23397 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Microsoft Outlook Elevation of Privilege Vulnerability
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
Microsoft Outlook Elevation of Privilege Vulnerability
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
输入验证不恰当
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Microsoft Outlook 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Microsoft Outlook是美国微软(Microsoft)公司的一套电子邮件应用程序。 Microsoft Outlook存在安全漏洞。以下产品和版本受到影响:Microsoft Office LTSC 2021 for 32-bit editions,Microsoft Outlook 2016 (32-bit edition),Microsoft Office LTSC 2021 for 64-bit editions,Microsoft 365 Apps for Enterprise for
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
厂商产品影响版本CPE订阅
MicrosoftMicrosoft Office LTSC 2021 16.0.1 ~ https://aka.ms/OfficeSecurityReleases -
MicrosoftMicrosoft Outlook 2016 16.0.0.0 ~ 16.0.5387.1000 -
MicrosoftMicrosoft 365 Apps for Enterprise 16.0.1 ~ https://aka.ms/OfficeSecurityReleases -
MicrosoftMicrosoft Office 2019 19.0.0 ~ https://aka.ms/OfficeSecurityReleases -
MicrosoftMicrosoft Outlook 2013 Service Pack 1 15.0.0.0 ~ 15.0.5537.1000 -
二、漏洞 CVE-2023-23397 的公开POC
#POC 描述源链接神龙链接
1Exploit for the CVE-2023-23397https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAYPOC详情
2Nonehttps://github.com/j0eyv/CVE-2023-23397POC详情
3CVE-2023-23397 - Microsoft Outlook Vulnerabilityhttps://github.com/alicangnll/CVE-2023-23397POC详情
4Python script to create a message with the vulenrability properties sethttps://github.com/grn-bogo/CVE-2023-23397POC详情
5Simple PoC in PowerShell for CVE-2023-23397https://github.com/ka7ana/CVE-2023-23397POC详情
6Nonehttps://github.com/api0cradle/CVE-2023-23397-POC-PowershellPOC详情
7CVE-2023-23397 Remediation Script (Powershell)https://github.com/im007/CVE-2023-23397POC详情
8PoC for CVE-2023-23397https://github.com/cleverg0d/CVE-2023-23397-PoC-PowerShellPOC详情
9Exploit POC for CVE-2023-23397https://github.com/ahmedkhlief/CVE-2023-23397-POCPOC详情
10Generates meeting requests taking advantage of CVE-2023-23397. This requires the outlook thick client to send.https://github.com/BillSkiCO/CVE-2023-23397_EXPLOITPOC详情
11Nonehttps://github.com/djackreuter/CVE-2023-23397-PoCPOC详情
12CVE-2023-23397 C# PoC https://github.com/moneertv/CVE-2023-23397POC详情
13Nonehttps://github.com/ahmedkhlief/CVE-2023-23397-POC-Using-Interop-OutlookPOC详情
14Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.https://github.com/Trackflaw/CVE-2023-23397POC详情
15Patch for MS Outlook Critical Vulnerability - CVSS 9.8https://github.com/SecCTechs/CVE-2023-23397POC详情
16Proof of Concept for CVE-2023-23397 in Pythonhttps://github.com/tiepologian/CVE-2023-23397POC详情
17Python script for sending e-mails with CVE-2023-23397 payload using SMTPhttps://github.com/BronzeBee/cve-2023-23397POC详情
18Nonehttps://github.com/stevesec/CVE-2023-23397POC详情
19An exploitation demo of Outlook Elevation of Privilege Vulnerabilityhttps://github.com/madelynadams9/CVE-2023-23397-ReportPOC详情
20CVE-2023-23397 powershell patch script for Windows 10 and 11 https://github.com/Zeppperoni/CVE-2023-23397-PatchPOC详情
21Nonehttps://github.com/jacquesquail/CVE-2023-23397POC详情
22CVE-2023-23397漏洞的简单PoC,有效载荷通过电子邮件发送。https://github.com/CKevens/CVE-2023-23397-POCPOC详情
23CVE-2023-23397 PoChttps://github.com/vlad-a-man/CVE-2023-23397POC详情
24Nonehttps://github.com/Muhammad-Ali007/OutlookNTLM_CVE-2023-23397POC详情
25This script exploits CVE-2023-23397, a Zero-Day vulnerability in Microsoft Outlook, allowing the generation of malicious emails for testing and educational purposes.https://github.com/Pushkarup/CVE-2023-23397POC详情
26Nonehttps://github.com/ducnorth2712/CVE-2023-23397POC详情
27C implementation of Outlook 0-click vulnerabilityhttps://github.com/alsaeroth/CVE-2023-23397-POCPOC详情
28Proof of Work of CVE-2023-23397 for vulnerable Microsoft Outlook client application.https://github.com/TheUnknownSoul/CVE-2023-23397-PoWPOC详情
29An exploitation demo of Outlook Elevation of Privilege Vulnerabilityhttps://github.com/Cyb3rMaddy/CVE-2023-23397-ReportPOC详情
30CVE-2023-23397漏洞的简单PoC,有效载荷通过电子邮件发送。https://github.com/3yujw7njai/CVE-2023-23397-POCPOC详情
31CVE-2023-23397: Remote Code Execution Vulnerability in Microsoft Outlookhttps://github.com/Symbolexe/CVE-2023-23397POC详情
32C implementation of Outlook 0-click vulnerabilityhttps://github.com/sarsaeroth/CVE-2023-23397-POCPOC详情
33Nonehttps://github.com/shaolinsec/CVE-2023-23397POC详情
34CVE-2023-23397漏洞的简单PoC,有效载荷通过电子邮件发送。https://github.com/AiK1d/CVE-2023-23397-POCPOC详情
35Demonstration of CVE-2023-23397 Outlook Privellege Escalation vulnerabilityhttps://github.com/Agentgilspy/CVE-2023-23397POC详情
36Nonehttps://github.com/Threekiii/Awesome-POC/blob/master/%E5%85%B6%E4%BB%96%E6%BC%8F%E6%B4%9E/Microsoft%20Outlook%20%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87%E6%BC%8F%E6%B4%9E%20CVE-2023-23397.mdPOC详情
37Demonstration of CVE-2023-23397 Outlook Privellege Escalation vulnerabilityhttps://github.com/Gilospy/CVE-2023-23397POC详情
38CVE-2023-23397漏洞的简单PoC,有效载荷通过电子邮件发送。https://github.com/P4x1s/CVE-2023-23397-POCPOC详情
39Two POCs I created for the CVE-2023-23397 Outlook NTLM vulnerability, to be used internally.https://github.com/Phaedrik/CVE-2023-23397-POCPOC详情
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC
三、漏洞 CVE-2023-23397 的情报信息
Please 登录 to view more intelligence information
四、漏洞 CVE-2023-23397 的评论

暂无评论

发表评论