Many Formulas, One Calc – Exploiting a New Office Equation Vulnerability

By: Omer Gull and Netanel Ben Simon Background A few weeks ago, a vulnerability in the Office Equation 3.0 process (EQNEDT32.EXE) was discovered by Embedi. For a couple of reasons this event raised a few eyebrows. First, the process was a 32bit application without ASLR even on a windows 10 machine. Secondly, the patch released […]

The post Many Formulas, One Calc – Exploiting a New Office Equation Vulnerability appeared first on Check Point Research.

Article Link: http://research.checkpoint.com/another-office-equation-rce-vulnerability/