CVE-2001-0501 — Microsoft Word vulnerability

3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.6%

top 31.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Word

Timeline

PublishedJul 21

Latest updateApr 30

Description

Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the user by embedding the macros in a manner that escapes detection by the security scanner.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/word2002+4

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-r467-8m32-3x44: Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the user by embedding the macros in a manner that esc↗2022-04-30

▶

CVEList

CVE-2001-0501: Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the user by embedding the macros in a manner that esc↗2002-03-09

▶