| VID |
28030 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The MS Excel and Word on the Windows system are not applied a set of cumulative patches. The multiple vulnerabilities in MS Excel and Word could allow remote attackers to execute arbitrary code on a user's machine. All vulnerabilities require some degree of user interaction for a successful attack.
1. Excel Inline Macros Vulnerability: CAN-2002-0616
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by attaching an inline macro to an object within an Excel workbook.
2. Hyperlinked Excel Workbook Macro Bypass: CAN-2002-0617
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by creating a hyperlink on a drawing shape in a source workbook that points to a destination workbook containing an autoexecute macro.
3. Excel XSL Stylesheet Script Execution: CAN-2002-0618
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet.
4. Variant of MS00-071, Word Mail Merge Vulnerability: CAN-2002-0619
The Mail Merge Tool in Microsoft Word 2002 for Windows, Microsoft Access is present on a system, allows remote attackers to execute Visual Basic (VBA) scripts within a mail merge document saved in HTML format.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms02-031.asp
http://marc.theaimsgroup.com/?l=ntbugtraq&m=102256054320377&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=102139136019862&w=2
* Affected Software:
Microsoft Excel 2000 for Windows
Microsoft Office 2000 for Windows
Microsoft Excel 2002 for Windows
Microsoft Word 2002 for Windows
Microsoft Office XP for Windows |
| Recommendation |
Apply the appropriate patch for your system, available from the following web sites:
Office Product Updates site:
http://office.microsoft.com/productupdates/default.aspx
For Microsoft Excel 2000 for Windows:
Client Installation: http://office.microsoft.com/downloads/2000/exc0901.aspx
Administrative Installation: http://www.microsoft.com/office/ork/xp/journ/exc0901a.htm
For Microsoft Excel 2002 for Windows:
Client Installation: http://office.microsoft.com/downloads/2002/exc1002.aspx
Administrative Installation: http://www.microsoft.com/office/ork/xp/journ/exc1002a.htm
For Microsoft Word 2002:
Client Installation: http://office.microsoft.com/downloads/2002/wrd1004.aspx
Administrative Installation: http://www.microsoft.com/office/ork/xp/journ/wrd1004a.htm
* Verifying patch installation:
Excel 2000 for Windows:
Verify that the version number of excel.exe is 9.0.6508.
Excel 2002 for Windows:
Verify that the version number of excel.exe is 10.0.4109.0.
Word 2002 for Windows:
Verify that the version number of winword.exe is 10.0.4109. |
| Related URL |
CVE-2014-2815 (CVE) |
| Related URL |
69098 (SecurityFocus) |
| Related URL |
(ISS) |
|
