CVE Vulnerabilities

CVE-2000-0788

Published: Oct 20, 2000 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands.

Affected Software

Name Vendor Start Version End Version
Access Microsoft 2000 (including) 2000 (including)
Word Microsoft 2000 (including) 2000 (including)

References