CVE-2003-0821 — Microsoft Word vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

11.0%

top 6.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Word Microsoft Works

Timeline

PublishedDec 15

Latest updateApr 29

Description

Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypasses the macro security model.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDmicrosoft/word4 versions+3

▶NVDmicrosoft/works4 versions+3

🔴Vulnerability Details

GHSA

GHSA-vfc8-9qjc-87vq: Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypas↗2022-04-29

▶

CVEList

CVE-2003-0821: Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM (Excel 4) macro that bypas↗2003-11-18

▶