Vulnerability Details CVE-2002-0152
Buffer overflow in various Microsoft applications for Macintosh allows remote attackers to cause a denial of service (crash) or execute arbitrary code by invoking the file:// directive with a large number of / characters, which affects Internet Explorer 5.1, Outlook Express 5.0 through 5.0.2, Entourage v. X and 2001, PowerPoint v. X, 2001, and 98, and Excel v. X and 2001 for Macintosh.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.226
EPSS Ranking 95.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=101897994314015&w=2
- http://www.iss.net/security_center/static/8850.php
- http://www.osvdb.org/5357
- http://www.securityfocus.com/bid/4517
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-019
- http://marc.info/?l=bugtraq&m=101897994314015&w=2
- http://www.iss.net/security_center/static/8850.php
- http://www.osvdb.org/5357
- http://www.securityfocus.com/bid/4517
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-019
Products affected by CVE-2002-0152
-
cpe:2.3:a:microsoft:entourage:2001
-
cpe:2.3:a:microsoft:entourage:v._x
-
cpe:2.3:a:microsoft:excel:2001
-
cpe:2.3:a:microsoft:excel:x
-
cpe:2.3:a:microsoft:ie:5.1
-
cpe:2.3:a:microsoft:office:2001
-
cpe:2.3:a:microsoft:office:v.x
-
cpe:2.3:a:microsoft:outlook_express:5.0
-
cpe:2.3:a:microsoft:outlook_express:5.0.1
-
cpe:2.3:a:microsoft:outlook_express:5.0.2
-
cpe:2.3:a:microsoft:outlook_express:5.0.3
-
cpe:2.3:a:microsoft:powerpoint:2001
-
cpe:2.3:a:microsoft:powerpoint:98
-
cpe:2.3:a:microsoft:powerpoint:v.x