CVSS: 7.8EPSS: 16%CPEs: 7EXPL: 0CVE-2002-0618
https://notcve.org/view.php?id=CVE-2002-0618
12 Aug 2002 — The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Computer zone by embedding HTML scripts within an Excel workbook that contains an XSL stylesheet, aka "Excel XSL Stylesheet Script Execution". El Modelo de Seguridad de Macros en Microsoft Excel 2000 y 2002 permite a atacantes remotos ejecutar código en la zona Ordenador Local incrustando scripts HTML en un libro Excel que contiene una hoja de estilos XLS. También conocido como "Ejecuci... • http://marc.info/?l=ntbugtraq&m=102256054320377&w=2 •
CVSS: 7.5EPSS: 11%CPEs: 2EXPL: 0CVE-2002-0619
https://notcve.org/view.php?id=CVE-2002-0619
12 Aug 2002 — The Mail Merge Tool in Microsoft Word 2002 for Windows, when Microsoft Access is present on a system, allows remote attackers to execute Visual Basic (VBA) scripts within a mail merge document that is saved in HTML format, aka a "Variant of MS00-071, Word Mail Merge Vulnerability" (CVE-2000-0788). La Herramienta de Integración de Correo (Merge Mail) en Microsoft Word 2002 para Windows, si Microsoft Access está presente en el sistema, permite a atacantes remotos ejecutar scripts de Visual Basic (VBA) en un d... • http://marc.info/?l=bugtraq&m=102139136019862&w=2 •
CVSS: 7.5EPSS: 11%CPEs: 7EXPL: 0CVE-2002-0615
https://notcve.org/view.php?id=CVE-2002-0615
03 Jul 2002 — The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing attackers to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation". • http://www.iss.net/security_center/static/9422.php •
CVSS: 8.8EPSS: 16%CPEs: 4EXPL: 0CVE-2001-0003
https://notcve.org/view.php?id=CVE-2001-0003
12 Feb 2001 — Web Extender Client (WEC) in Microsoft Office 2000, Windows 2000, and Windows Me does not properly process Internet Explorer security settings for NTLM authentication, which allows attackers to obtain NTLM credentials and possibly obtain the password, aka the "Web Client NTLM Authentication" vulnerability. • http://www.securityfocus.com/bid/2199 •
CVSS: 10.0EPSS: 37%CPEs: 1EXPL: 2CVE-2000-0854 – Microsoft Windows NT 4.0/2000 - DLL Search Path
https://notcve.org/view.php?id=CVE-2000-0854
14 Nov 2000 — When a Microsoft Office 2000 document is launched, the directory of that document is first used to locate DLL's such as riched20.dll and msi.dll, which could allow an attacker to execute arbitrary commands by inserting a Trojan Horse DLL into the same directory as the document. • https://www.exploit-db.com/exploits/20232 •
CVSS: 7.5EPSS: 10%CPEs: 10EXPL: 0CVE-2000-0419
https://notcve.org/view.php?id=CVE-2000-0419
11 May 2000 — The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability. • http://www.cert.org/advisories/CA-2000-07.html •
CVSS: 9.8EPSS: 0%CPEs: 22EXPL: 0CVE-2000-0088
https://notcve.org/view.php?id=CVE-2000-0088
20 Jan 2000 — Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malformed Conversion Data" vulnerability. • http://www.securityfocus.com/bid/946 •