CVE-2002-0617

MEDIUM

Description

The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by creating a hyperlink on a drawing shape in a source workbook that points to a destination workbook containing an autoexecute macro, aka "Hyperlinked Excel Workbook Macro Bypass."

References

http://www.osvdb.org/5175

http://www.securityfocus.com/bid/5064

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-031

https://exchange.xforce.ibmcloud.com/vulnerabilities/9398

Details

Source: MITRE

Published: 2002-08-12

Updated: 2018-10-12

Risk Information

CVSS v2.0

Base Score: 5.1

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 4.9

Severity: MEDIUM