New Specula Tool Uses Outlook for Remote Code Execution in Windows
New Specula Tool Uses Outlook for Remote Code Execution in Windows
31 July 2024
TrustedSec released a post-exploitation framework called "Specula", which exploits CVE-2017-11774 to create a custom Outlook Home Page using WebView and execute arbitrary commands on compromised Windows systems.