CVE-2001-0240

Published: Jun 27, 2001Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Microsoft Word before Word 2002 allows attackers to automatically execute macros without warning the user via a Rich Text Format (RTF) document that links to a template with the embedded macro.

Affected (5)

Products: Microsoft: Word

Microsoft

1 product

Word

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Microsoft Word	Version 2000
Microsoft Word	Version 2001
Microsoft Word	Version 97
Microsoft Word	Version 98
Microsoft Word	Version 98

References (6)

http://www.securityfocus.com/bid/2753

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-028

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/6571

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/2753

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-028

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/6571

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.