Office Is Still Yummy - How To Defeat Memory Protections In Office Document Exploitation

No ratings

Presented at SyScan 2010 by

Nanika&tt

It has been a long time since researchers started looking for Office vulnerabilities. Not only keep patching vulnerabilities, Microsoft has also implemented many advanced and effective memory protection techniques to against malicious Office document attack.Exploiting Office document has been getting harder and harder. Recently many researchers have changed to work on PDF, Flash, and other document formats. Has Office document become safer now? We don't think so. In this paper, you will see the Office document is still yummy!This work introduces three major steps that how we effectively exploit an Office document: