CVE-2002-0618

HIGH

Description

The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka "Excel XSL Stylesheet Script Execution".

References

http://marc.info/?l=ntbugtraq&m=102256054320377&w=2

http://www.guninski.com/ex$el2.html

http://www.iss.net/security_center/static/9399.php

http://www.securityfocus.com/bid/4821

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-031

Details

Source: MITRE

Published: 2002-08-12

Updated: 2018-10-12

Risk Information

CVSS v2.0

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH