Vulnerability Details CVE-2001-0628
Microsoft Word 2000 does not check AutoRecovery (.asd) files for macros, which allows a local attacker to execute arbitrary macros with the user ID of the Word user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.4%
CVSS Severity
CVSS v2 Score 7.2
References
- http://support.microsoft.com/support/kb/articles/Q274/2/28.asp
- http://www.securityfocus.com/bid/2760
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6614
- http://support.microsoft.com/support/kb/articles/Q274/2/28.asp
- http://www.securityfocus.com/bid/2760
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6614