Title: Microsoft Excel XML Vulnerability
Severity: MODERATE
Description:
Under normal circumstances, Microsoft Excel produces a warning dialogue when a user attempts to open a macro file that resides outside of the spreadsheet that is currently in use. The dialog box will not appear if the user opens a macro file consisting of Excel 4.0 Macro Language (XML) in an external text file. Even if a user were to have chosen the option of 'High Security' in Excel, they would still be affected by this vulnerability. It is not possible to exploit this vulnerability in such a way that it would self launch.
Affected Products:
- Microsoft Excel 2000
- Microsoft Excel 97 0.0.0
- Microsoft Office 2000
- Microsoft Office 97 0.0.0
References:
- Microsoft: Frequently Asked Questions: Microsoft Security Bulletin (MS00-022)
- Microsoft: Q255605: XL2000: Macro Virus Warning Does Not Appear When You Open a Text File T
- Microsoft: Q255606: XL97: Macro Virus Warning Does Not Appear When You Open a Text File Tha
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
