MS00-049:Microsoft Office 脚本允许远程保存恶意文件

如果一个Web站点在web页面中嵌入恶意脚本,它调用一个Excel 2000或者PowerPoint文件， 当用户访问这个站点时可能导致一个远程文件可能是恶意的被保存到该用户的硬盘上。 Microsoft Excel 2000 Microsoft PowerPoint 2000 Microsoft PowerPoint 97.0 - Microsoft Windows 98 - Microsoft Windows 95 - Microsoft Windows NT 4.0 - Microsoft Windows NT 2000 微软已经提供了补丁程序： Microsoft Excel...

CVE-1999-1474

CVE-1999-1474 concerns PowerPoint 95 and 97 where opening a document in a browser (e.g., Internet Explorer) could trigger an automatic execution of an application without user prompting. The available sources describe that remote attackers could cause an application to run automatically via the s...

CVE-2000-0597

The CVE-2000-0597 entry concerns Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97. The vulnerability arises because these products are marked as safe for scripting, enabling a remote attacker to coax Internet Explorer or some email clients to save files to arbitrary locations via th...