MS02-031: Cumulative patches for Excel and Word for Windows (324458)

This script is Copyright (C) 2003-2016 Tenable Network Security, Inc.


Synopsis :

The remote host is affected by an arbitrary code execution
vulnerability.

Description :

The remote host has old versions of Word and Excel installed. A remote
attacker can exploit this by convincing a user to open a specially
crafted Excel or Word file, resulting in the execution of arbitrary
code in the context of the current user.

See also :

https://technet.microsoft.com/library/security/ms02-031

Solution :

Microsoft has released a set of patches for Office 2000 and XP.

Risk factor :

High / CVSS Base Score : 7.6
(CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.5
(CVSS2#E:U/RL:ND/RC:ND)
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 11336 ()

Bugtraq ID: 4821
5063
5064
5066

CVE ID: CVE-2002-0616
CVE-2002-0617
CVE-2002-0618
CVE-2002-0619

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial