PT-2003-1789 · Microsoft · Office Word

Jim Bassett

Publicado

2003-09-04

Atualizado

2018-10-12

CVE-2003-0664

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Microsoft Word versions 97, 98(J), 2000, 2002

Description: The issue allows attackers to bypass the macro security model and automatically execute arbitrary macros via a malicious document, due to improper checking of certain document properties.

Recommendations: For Microsoft Word version 97, update to a newer version that properly checks document properties to prevent macro execution. For Microsoft Word version 98(J), update to a newer version that properly checks document properties to prevent macro execution. For Microsoft Word version 2000, update to a newer version that properly checks document properties to prevent macro execution. For Microsoft Word version 2002, update to a newer version that properly checks document properties to prevent macro execution.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2003-0664

Produtos afetados

Office Word

PT-2003-1789 · Microsoft · Office Word

CVE-2003-0664

Identificadores relacionados

Produtos afetados

Referências · 4