Vulnerability Description
Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Excel | All versions |
| Microsoft | Office | All versions |
Related Weaknesses (CWE)
References
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241900
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241901
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241902
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-04
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241900
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241901
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241902
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-04
FAQ
What is CVE-1999-0794?
CVE-1999-0794 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file.
How severe is CVE-1999-0794?
CVE-1999-0794 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-0794?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Excel, Microsoft Office.