PT-2002-1238 · Microsoft · Office Excel+4

Published

2002-04-22

Updated

2018-10-12

CVE-2002-0152

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Internet Explorer versions 5.1 Outlook Express versions 5.0 through 5.0.2 Entourage versions X and 2001 PowerPoint versions X, 2001, and 98 Excel versions X and 2001

Description A buffer overflow issue affects various Microsoft applications for Macintosh, allowing remote attackers to cause a denial of service or execute arbitrary code. This is achieved by invoking the file:// directive with a large number of / characters.

Recommendations For Internet Explorer version 5.1, update to a newer version to mitigate the risk. For Outlook Express versions 5.0 through 5.0.2, update to a newer version to mitigate the risk. For Entourage versions X and 2001, update to a newer version to mitigate the risk. For PowerPoint versions X, 2001, and 98, update to a newer version to mitigate the risk. For Excel versions X and 2001, update to a newer version to mitigate the risk.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0152

Affected Products

Entourage

Office Excel

Internet Explorer

Outlook Express

Office Powerpoint

PT-2002-1238 · Microsoft · Office Excel+4

CVE-2002-0152

Related Identifiers

Affected Products

References · 7