Описание
Microsoft Word 2002, 2000, 97, and 98(J) does not properly check certain properties of a document, which allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:word:97:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:97:sr1:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:97:sr2:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:98:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:98:*:*:ja:*:*:*:*
cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2000:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2000:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2000:sr1:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2000:sr1a:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2002:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2002:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:word:2002:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:works:2001:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:works:2002:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:works:2003:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.07251
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Microsoft Word 2002, 2000, 97, and 98(J) does not properly check certain properties of a document, which allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document.
EPSS
Процентиль: 91%
0.07251
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other