This script is Copyright (C) 2003-2017 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through VBA.
The remote host is running a version of Microsoft Visual Basic for
Applications that is vulnerable to a buffer overflow when handling
An attacker may exploit this flaw to execute arbitrary code on this
host by sending a malformed file to a user of the remote host.
See also :
Microsoft has released a set of patches for Office.
Risk factor :
High / CVSS Base Score : 7.6
CVSS Temporal Score : 6.3
Public Exploit Available : true