Vulnerability Description
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka "Excel XSL Stylesheet Script Execution".
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Excel | 2000 |
| Microsoft | Office | 2000 |
References
- http://marc.info/?l=ntbugtraq&m=102256054320377&w=2
- http://www.guninski.com/ex%24el2.html
- http://www.iss.net/security_center/static/9399.php
- http://www.securityfocus.com/bid/4821
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-03
- http://marc.info/?l=ntbugtraq&m=102256054320377&w=2
- http://www.guninski.com/ex%24el2.html
- http://www.iss.net/security_center/static/9399.php
- http://www.securityfocus.com/bid/4821
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-03
FAQ
What is CVE-2002-0618?
CVE-2002-0618 is a vulnerability with a CVSS score of 7.5 (HIGH). The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contain...
How severe is CVE-2002-0618?
CVE-2002-0618 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0618?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Excel, Microsoft Office.