Security Hero Rotating Header Image

Evasion with OLE2 Fragmentation

Evasion with OLE2 Fragmentation

Posted by H D Moore on May 15

Something to keep in mind when using Office doc exploits during
penetration tests:

(links active within in the article itself)


One Comment

  1. "Penetration Testing (pen-test) Mailing List" says:

    Re: Evasion with OLE2 Fragmentation

    Posted by Jeffrey Walton on May 16

    > Its embarrassing that so many products fail to detect
    > known threats that have the exact same byte stream…
    Try the EICAR test string using an arbitrary location within the file
    (rather than starting at offset 0). Only four scanner engines on detected the string when…


Leave a Reply

Your email address will not be published. Required fields are marked *