Lucene search

K
cve[email protected]CVE-2001-0628
HistoryAug 14, 2001 - 4:00 a.m.

CVE-2001-0628

2001-08-1404:00:00
NVD-CWE-Other
web.nvd.nist.gov
16
microsoft word
2000
cve-2001-0628
macro vulnerability
local attack
asd files.

7.8 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

28.4%

Microsoft Word 2000 does not check AutoRecovery (.asd) files for macros, which allows a local attacker to execute arbitrary macros with the user ID of the Word user.

CPENameOperatorVersion
microsoft:wordmicrosoft wordeq2000

7.8 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

28.4%