Kazuyuki Housaka

Name of the Vulnerable Software and Affected Versions: Microsoft Word versions 97, 98(J), 2000, and 2002 Microsoft Works Suites versions 2001 through 2004 Description: The issue allows remote attackers to execute arbitrary code via a buffer overflow attack due to improper checking of the length of the `Macro names` data value. Recommendations: For Microsoft Word versions 97, 98(J), 2000, and 2002, and Microsoft Works Suites versions 2001 through 2004, consider disabling the macro execution feature until a patch is available. Restrict access to files that may contain malicious macros to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Microsoft Excel versions 97, 2000, and 2002 Description: The issue allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model. Recommendations: For Microsoft Excel versions 97, 2000, and 2002, consider disabling the use of XLM macros until a patch is available. Restrict access to spreadsheets from untrusted sources to minimize the risk of exploitation.