28 January 2018 - Weaponized exploits for CVE-2018-0802

Actors within the criminal communities have claimed that they successfully weaponized exploits for CVE-2018-0802; a vulnerability in the Microsoft Office Equation Editor in Microsoft Office 2007, 2010, 2013, and 2016 (equation editor)announced on January 10, 2018. This memory corruption vulnerability allows for remote code execution and as such is of interest due to the ability to use it to deliver malicious payloads remotely. 

See https://www.youtube.com/watch?v=yhKdI2iiMI4&t=131s for a demo by the actor darkcoderz.