Commit 96cd17cc7f706370989b2175dd424526c2e37212
1 parent
b5d79b38
clsid: added CLSID for DOCM files
Showing
1 changed file
with
1 additions
and
0 deletions
oletools/common/clsid.py
| @@ -102,6 +102,7 @@ KNOWN_CLSIDS = { | @@ -102,6 +102,7 @@ KNOWN_CLSIDS = { | ||
| 102 | '0E59F1D5-1FBE-11D0-8FF2-00A0D10038BC': 'MSScriptControl.ScriptControl (may trigger CVE-2015-0097)', | 102 | '0E59F1D5-1FBE-11D0-8FF2-00A0D10038BC': 'MSScriptControl.ScriptControl (may trigger CVE-2015-0097)', |
| 103 | '1461A561-24E8-4BA3-8D4A-FFEEF980556B': 'BCSAddin.Connect (potential exploit CVE-2016-0042 / MS16-014)', | 103 | '1461A561-24E8-4BA3-8D4A-FFEEF980556B': 'BCSAddin.Connect (potential exploit CVE-2016-0042 / MS16-014)', |
| 104 | '14CE31DC-ABC2-484C-B061-CF3416AED8FF': 'Loads WUAEXT.DLL (Known Related to CVE-2015-6128)', | 104 | '14CE31DC-ABC2-484C-B061-CF3416AED8FF': 'Loads WUAEXT.DLL (Known Related to CVE-2015-6128)', |
| 105 | + '18A06B6B-2F3F-4E2B-A611-52BE631B2D22': 'Word.DocumentMacroEnabled.12 (DOCM)', | ||
| 105 | '1D8A9B47-3A28-4CE2-8A4B-BD34E45BCEEB': 'UPnP.DescriptionDocument', | 106 | '1D8A9B47-3A28-4CE2-8A4B-BD34E45BCEEB': 'UPnP.DescriptionDocument', |
| 106 | '1EFB6596-857C-11D1-B16A-00C0F0283628': 'MSCOMCTL.TabStrip (may trigger CVE-2012-1856, CVE-2013-3906 - often used for heap spray)', | 107 | '1EFB6596-857C-11D1-B16A-00C0F0283628': 'MSCOMCTL.TabStrip (may trigger CVE-2012-1856, CVE-2013-3906 - often used for heap spray)', |
| 107 | '233C1507-6A77-46A4-9443-F871F945D258': 'Shockwave Control Objects', | 108 | '233C1507-6A77-46A4-9443-F871F945D258': 'Shockwave Control Objects', |