Lucene search

[email protected]CVE-2002-0618

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0618

2003-04-0205:00:00

[email protected]

web.nvd.nist.gov

microsoft excel

macro security

code execution

cve-2002-0618

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

High

0.065 Low

EPSS

Percentile

93.7%

JSON

The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka “Excel XSL Stylesheet Script Execution”.

Affected configurations

NVD

Node

microsoftexcelMatch2000

microsoftexcelMatch2000sp2

microsoftexcelMatch2000sr1

microsoftexcelMatch2002

microsoftexcelMatch2002sp1

microsoftofficeMatch2000

microsoftofficeMatchxp

CPENameOperatorVersion
microsoft:excelmicrosoft exceleq2000
microsoft:excelmicrosoft exceleq2002
microsoft:officemicrosoft officeeq2000
microsoft:officemicrosoft officeeqxp

CPE	Name	Operator	Version
microsoft:excel	microsoft excel	eq	2000
microsoft:excel	microsoft excel	eq	2002
microsoft:office	microsoft office	eq	2000
microsoft:office	microsoft office	eq	xp

References

marc.info/?l=ntbugtraq&m=102256054320377&w=2

www.guninski.com/ex%24el2.html

www.iss.net/security_center/static/9399.php

www.securityfocus.com/bid/4821

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-031

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

High

0.065 Low

EPSS

Percentile

93.7%

JSON

Related for CVE-2002-0618

cvelist1 nvd1 nessus1