| Name | ie_cmarkup |
| CVE | CVE-2014-0322 |
| Exploit Pack | CANVAS |
| Description | ie_cmarkup |
| Notes | CVE Name: CVE-2014-0322 VENDOR: Microsoft NOTES: - This exploits leaks a vtable pointer of a mshtml object in order to bypass ASLR - We also leak the shellcode's address so there's no need for spraying the shellcode This exploit has been tested on: - Windows 7 Professional (x86) SP 1 on IE 10 - Windows 7 Enterprise (x86) SP 1 on IE 10 The following mshtml versions are vulnerables and has been tested: - 10.00.9200.16521 Repeatability: Single References: URL:http://technet.microsoft.com/security/bulletin/MS14-012 CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0322 |
| Learn more about the CANVAS Exploit Pack here: CANVAS |