CVE-2002-0618
Published Aug 12, 2002
Last updated a year ago
Overview
- Description
- The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka "Excel XSL Stylesheet Script Execution".
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F55D42D5-7371-47C2-BF55-B7F51C19B61E"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2000:sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4FBEB90-1BF2-4E84-9A74-EAD226AAA0A2"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2000:sr1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27C6E1BC-406E-4B0B-B513-33226AC4482D"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2002:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "082D3262-87E3-4245-AD9C-02BE0871FA3B"
},
{
"criteria": "cpe:2.3:a:microsoft:excel:2002:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C619E79B-90FB-4812-B0F3-115B47498492"
},
{
"criteria": "cpe:2.3:a:microsoft:office:2000:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A9A82D13-513C-46FA-AF51-0582233E230A"
},
{
"criteria": "cpe:2.3:a:microsoft:office:xp:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34FA62BE-D804-402D-9BDD-68BC70ECCD76"
}
],
"operator": "OR"
}
]
}
]