Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0618

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0618
Last Modified 10 Sep 2008 03:12:35
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0618

Summary

The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka "Excel XSL Stylesheet Script Execution".

Vulnerable Systems

Application

  • Microsoft Excel 2000

  • Microsoft Excel 2002

  • Microsoft Office 2000

  • Microsoft Office Xp


References

MS - MS02-031

MISC - http://www.guninski.com/ex$el2.html

NTBUGTRAQ - 20020524 Excel XP xml stylesheet problems

BID - 4821

XF - excel-xsl-script-execution(9399)


Last Updated: 27 May 2016 10:37:00