Jim Bassett

Name of the Vulnerable Software and Affected Versions: Microsoft Word versions 97, 98(J), 2000, 2002 Description: The issue allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document, due to improper checking of certain document properties. Recommendations: For Microsoft Word version 97, update to a newer version that properly checks document properties to prevent macro execution. For Microsoft Word version 98(J), update to a newer version that properly checks document properties to prevent macro execution. For Microsoft Word version 2000, update to a newer version that properly checks document properties to prevent macro execution. For Microsoft Word version 2002, update to a newer version that properly checks document properties to prevent macro execution.