Staying Ahead of CVE-2022-30190 (Follina)
Executive Summary On May 27th 2022, @nao_sec identified a malicious Microsoft Word document using a “ms-msdt” protocol scheme for arbitrary code execution. As the industry continues to identify novel ways to abuse this ability over the weekend, Microsoft assigned it as CVE-2022-30190. Similar to what we observed with Log4j, the methods of execution and outcomes …