This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
Matt Johansen
mattjay.com
did:plc:t6u5bkl7wvnzgkx36kmmh43p
Attackers are now actively exploiting an Outlook RCE flaw that Microsoft patched a year ago.
CISA is urging immediate patching (CVE-2024-21413)
The exploit bypasses controls via a crafted file:// link to steal NTLM creds.
🔗 https://www.vulnu.com/p/exploits-target-office-cve-2024-21413-flaw-microsoft-patched-a-year-ago
2025-02-12T01:56:54.560Z