Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0240

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0240
Last Modified 05 Sep 2008 04:23:37
Published 27 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0240

Summary

Microsoft Word before Word 2002 allows attackers to automatically execute macros without warning the user via a Rich Text Format (RTF) document that links to a template with the embedded macro.

Vulnerable Systems

Application

  • Microsoft Word 2000

  • Microsoft Word 2001

  • Microsoft Word 97

  • Microsoft Word 98


References

MS - MS01-028

XF - word-rtf-macro-execution(6571)

BID - 2753


Last Updated: 27 May 2016 10:36:11