CVE Vulnerabilities

CVE-2000-0788

Published: Oct 20, 2000 | Modified: Oct 12, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands.

Affected Software

Name Vendor Start Version End Version
Access Microsoft 2000 2000
Word Microsoft 2000 2000

References