This script is Copyright (C) 2006-2015 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through VBA.
The remote host is running a version of Microsoft Visual Basic for
Applications that is vulnerable to a buffer overflow when handling
An attacker may exploit this flaw to execute arbitrary code on this
host by sending a malformed file to a user of the remote host.
See also :
Microsoft has released a set of patches for Office.
Risk factor :
Medium / CVSS Base Score : 5.1
CVSS Temporal Score : 4.2
Public Exploit Available : true