- Version v4
- Download 1208
- File Size 134.49kb
- Create Date February 23, 2020
A HTA Exploit is use for remote code execution vulnerability exists in the way Microsoft Office and WordPad parse specially crafted files. An attacker who successfully exploited this vulnerability could take control of an affected system.
An attacker could then install the program; View, change or delete data; Or create new accounts with full user rights. Exploiting this vulnerability requires that users open or preview a specially crafted file with an affected version of Microsoft Office or WordPad.
In an email attack scenario, an attacker can exploit the vulnerability by sending a specially crafted file to the user and then convincing the user to open the file. The update addresses vulnerabilities by correcting the way Microsoft Office and WordPad parses specially crafted files, and by enabling API functionality in Windows that Microsoft Office and WordPad resolve the identified issue Will benefit.