Vulnerabilites - CVE-2000-0597

Home > Resources > Vulnerabilites > CVE-2000-0597

Resources

CVE-2000-0597

Status:

Entry

Description:

Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications (VBA) SaveAs function, aka the "Office HTML Script" vulnerability.

Reference:

BUGTRAQ:20000627 IE 5 and Excel 2000
PowerPoint 2000 vulnerability - executing programs
URL:http://www.securityfocus.com/templates/archive.pike?list=1&msg=39589349.ED9DBCAB@nat.bg
MS:MS00-049
URL:http://www.microsoft.com/technet/security/bulletin/MS00-049.asp
BID:1399
URL:http://www.securityfocus.com/bid/1399
XF:ie-powerpoint-activex-object-execute

CVE ID

Protocol

SoursePort

TargetPort

Other Vulnerabilities:

Year	CEV (3053) Common Vulnerabilities and Exposures	CAN (20174) Candidate
1999	CVE-1999 (821)	CAN-1999 (749 )
2000	CVE-2000 (808)	CAN-2000 (423 )
2001	CVE-2001 (625)	CAN-2001 (934 )
2002	CVE-2002 (643)	CAN-2002 (1566)
2003	CVE-2003 (81 )	CAN-2003 (1236)
2004	CVE-2004 (75 )	CAN-2004 (2601)
2005	-	CAN-2005 (4825)
2006	-	CAN-2006 (6982)
2007	-	CAN-2007 (858 )

Free Network Analyzer

Free Packet Sniffer

We’re here to help…

Call:  800-381-6680
Fax:  888-813-1029
email:

Quick Links

Stay in touch

Colasoft, Capsa, nChronos and Colasoft logos are registered trademarks of Colasoft. Sniffer is a registered trademark of Network General Corporation. All other names are trademarks or registered trademarks of their respective owners.

nChronos

Capsa

nChronos

Capsa Enterprise

Capsa Professional

Other

Colasoft Online Store

How to Buy

nChronos

Capsa

Network Tools

Other

Resources

CVE-2000-0597

Status:

Description:

Reference:

Other Vulnerabilities:

Free Network Analyzer

We’re here to help…

Quick Links

Stay in touch