CVE-2002-0617

{"id": "CVE-2002-0617", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2002-08-12T04:00:00.000", "references": [{"url": "http://www.osvdb.org/5175", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/5064", "source": "cve@mitre.org"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-031", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9398", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/5175", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/5064", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-031", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9398", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by creating a hyperlink on a drawing shape in a source workbook that points to a destination workbook containing an autoexecute macro, aka \"Hyperlinked Excel Workbook Macro Bypass.\""}, {"lang": "es", "value": "El modelo de seguridad de macros en Microsoft Excel 2000 y 2002 para Windows permite a atacantes remotos ejecutar c\u00f3digo creando un hiperenlace o dibujando una forma en un libro fuente que apunta a un libro destino que contiene un macro de autoejecuci\u00f3n. Tambi\u00e9n conocida como \"Evitaci\u00f3n de Macro de Libro de Excel hiperenlazado\"."}], "lastModified": "2024-11-20T23:39:29.383", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F55D42D5-7371-47C2-BF55-B7F51C19B61E"}, {"criteria": "cpe:2.3:a:microsoft:excel:2000:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4FBEB90-1BF2-4E84-9A74-EAD226AAA0A2"}, {"criteria": "cpe:2.3:a:microsoft:excel:2000:sr1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27C6E1BC-406E-4B0B-B513-33226AC4482D"}, {"criteria": "cpe:2.3:a:microsoft:excel:2002:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "082D3262-87E3-4245-AD9C-02BE0871FA3B"}, {"criteria": "cpe:2.3:a:microsoft:excel:2002:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C619E79B-90FB-4812-B0F3-115B47498492"}, {"criteria": "cpe:2.3:a:microsoft:office:2000:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9A82D13-513C-46FA-AF51-0582233E230A"}, {"criteria": "cpe:2.3:a:microsoft:office:xp:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34FA62BE-D804-402D-9BDD-68BC70ECCD76"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}