This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through Word.
The remote host is running a version of Microsoft Word that could allow
arbitrary code to be run.
To succeed, the attacker would have to send a rogue Word file to a user
of the remote computer and have it open it. Then the macros contained
in the Word file would bypass the security model of Word, and would be
See also :
Microsoft has released a set of patches for Word 2000, 2002 and
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false