Lucene search

[email protected]CVE-2002-0617

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0617

2003-04-0205:00:00

[email protected]

web.nvd.nist.gov

cve-2002-0617

macro security model

microsoft excel

windows

remote code execution

hyperlinked excel workbook macro bypass

nvd

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

JSON

The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by creating a hyperlink on a drawing shape in a source workbook that points to a destination workbook containing an autoexecute macro, aka “Hyperlinked Excel Workbook Macro Bypass.”

Affected configurations

NVD

Node

microsoftexcelMatch2000

microsoftexcelMatch2000sp2

microsoftexcelMatch2000sr1

microsoftexcelMatch2002

microsoftexcelMatch2002sp1

microsoftofficeMatch2000

microsoftofficeMatchxp

CPENameOperatorVersion
microsoft:excelmicrosoft exceleq2000
microsoft:excelmicrosoft exceleq2002
microsoft:officemicrosoft officeeq2000
microsoft:officemicrosoft officeeqxp

CPE	Name	Operator	Version
microsoft:excel	microsoft excel	eq	2000
microsoft:excel	microsoft excel	eq	2002
microsoft:office	microsoft office	eq	2000
microsoft:office	microsoft office	eq	xp

References

www.osvdb.org/5175

www.securityfocus.com/bid/5064

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-031

exchange.xforce.ibmcloud.com/vulnerabilities/9398

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

JSON

Related for CVE-2002-0617

nvd1 cvelist1 nessus1