{"uuid": "8c29febe-d617-4a40-aa04-a51ebf5b9ad6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-1599", "type": "published-proof-of-concept", "source": "https://t.me/cKure/2776", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 With CVE-2020-1599, MS patched a bug that allows an attacker to append data to a signed PE file without invalidating its signature. Abusing this, as an example, would permit an attacker to deliver \"signed\" HTA payloads. Example \"evil\" HTA.\n\nhttps://www.virustotal.com/gui/file/14d4fc10dc1d01193a3b5e905fcfae0cd0347656ad7c643a2931dc6b774a311e/details", "creation_timestamp": "2020-11-12T05:59:59.000000Z"}