CVSS: 7.8EPSS: 16%CPEs: 7EXPL: 0CVE-2002-0618
https://notcve.org/view.php?id=CVE-2002-0618
12 Aug 2002 — The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka "Excel XSL Stylesheet Script Execution". El Modelo de Seguridad de Macros en Microsoft Excel 2000 y 2002 permite a atacantes remotos ejecutar código en la zona Ordenador Local incrustando scripts HTML en un libro Excel que contiene una hoja de estilos XLS. También conocido como "Ejecuci... • http://marc.info/?l=ntbugtraq&m=102256054320377&w=2 •
CVSS: 7.5EPSS: 11%CPEs: 7EXPL: 0CVE-2002-0615
https://notcve.org/view.php?id=CVE-2002-0615
03 Jul 2002 — The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing attackers to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation". • http://www.iss.net/security_center/static/9422.php •
CVSS: 8.8EPSS: 22%CPEs: 15EXPL: 0CVE-2002-0152
https://notcve.org/view.php?id=CVE-2002-0152
22 Apr 2002 — Buffer overflow in various Microsoft applications for Macintosh allows remote attackers to cause a denial of service (crash) or execute arbitrary code by invoking the file:// directive with a large number of / characters, which affects Internet Explorer 5.1, Outlook Express 5.0 through 5.0.2, Entourage v. X and 2001, PowerPoint v. X, 2001, and 98, and Excel v. X and 2001 for Macintosh. Desbordamiento de buffer en varias aplicaciones de Microsoft para Macintosht permite a atacantes remotos causar una denegac... • http://marc.info/?l=bugtraq&m=101897994314015&w=2 •
CVSS: 8.4EPSS: 16%CPEs: 2EXPL: 0CVE-2001-0718
https://notcve.org/view.php?id=CVE-2001-0718
30 Oct 2001 — Vulnerability in (1) Microsoft Excel 2002 and earlier and (2) Microsoft PowerPoint 2002 and earlier allows attackers to bypass macro restrictions and execute arbitrary commands by modifying the data stream in the document. • http://online.securityfocus.com/archive/1/218802 •
CVSS: 8.8EPSS: 10%CPEs: 3EXPL: 0CVE-2000-0765
https://notcve.org/view.php?id=CVE-2000-0765
13 Oct 2000 — Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embedded object tag, aka the "Microsoft Office HTML Object Tag" vulnerability. • http://www.securityfocus.com/bid/1561 •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 0CVE-2000-0637
https://notcve.org/view.php?id=CVE-2000-0637
26 Jul 2000 — Microsoft Excel 97 and 2000 allows an attacker to execute arbitrary commands by specifying a malicious .dll using the Register.ID function, aka the "Excel REGISTER.ID Function" vulnerability. • http://www.securityfocus.com/bid/1451 •
CVSS: 7.5EPSS: 9%CPEs: 3EXPL: 0CVE-2000-0597
https://notcve.org/view.php?id=CVE-2000-0597
27 Jun 2000 — Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications (VBA) SaveAs function, aka the "Office HTML Script" vulnerability. • http://www.securityfocus.com/bid/1399 •
CVSS: 7.5EPSS: 10%CPEs: 10EXPL: 0CVE-2000-0419
https://notcve.org/view.php?id=CVE-2000-0419
11 May 2000 — The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability. • http://www.cert.org/advisories/CA-2000-07.html •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2000-0277
https://notcve.org/view.php?id=CVE-2000-0277
03 Apr 2000 — Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability. • http://www.osvdb.org/1272 • CWE-254: 7PK - Security Features •
CVSS: 7.8EPSS: 7%CPEs: 1EXPL: 0CVE-1999-1055
https://notcve.org/view.php?id=CVE-1999-1055
31 Dec 1999 — Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary commands by using the CALL function to execute a malicious DLL, aka the Excel "CALL Vulnerability." • http://www.securityfocus.com/bid/179 •