Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2000-0277 | First vendor Publication | 2000-04-03 |
Vendor | Cve | Last vendor Modification | 2018-10-12 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.2 | Attack Range | Local |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 3.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0277 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-254 | Security Features |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
1272 | Microsoft Excel XLM Arbitrary Macro Execution Microsoft Excel contains a flaw that may allow a malicious user to run a macro without warning the user. The issue is triggered when a malicious user creates a text file containing Excel macro commands, and embed commands in a spreadsheet that, if executed, would launch the macro without asking the user for permission. If may be possible for the malicious user to persuade the user to launch the file containing embedded macro code resulting in a loss of integrity and/or availability of data. |
Sources (Detail)
Source | Url |
---|---|
BID | http://www.securityfocus.com/bid/1087 |
MS | https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00... |
OSVDB | http://www.osvdb.org/1272 |
Alert History
Date | Informations |
---|---|
2021-05-04 12:01:07 |
|
2021-04-22 01:01:20 |
|
2020-05-23 00:14:22 |
|
2018-10-13 00:22:22 |
|
2016-10-13 17:23:32 |
|
2016-06-28 14:52:25 |
|
2013-05-11 11:59:52 |
|