PT-2000-1531 · Microsoft · Powerpoint 97+3

Published

2000-06-27

Updated

2018-10-12

CVE-2000-0597

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft Office 2000 (Excel and PowerPoint) PowerPoint 97

Description The issue allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications (VBA) SaveAs function.

Recommendations For Microsoft Office 2000, consider disabling the VBA SaveAs function until a patch is available. For PowerPoint 97, restrict the use of the VBA SaveAs function to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0597

Affected Products

Internet Explorer

Office 2000

Powerpoint 97

Visual Basic For Applications

PT-2000-1531 · Microsoft · Powerpoint 97+3

CVE-2000-0597

Related Identifiers

Affected Products

References · 6