Vulnerabilities > CVE-2000-0788 - Unspecified vulnerability in Microsoft Access and Word

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

microsoft

NVD

Published: 2000-10-20

Updated: 2023-11-07

Summary

The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Access 2000 Microsoft Word 2000	2

References

http://www.securityfocus.com/bid/1566
https://exchange.xforce.ibmcloud.com/vulnerabilities/5322
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-071
http://www.securityfocus.com/templates/archive.pike?list=1&msg=398EB9CA.27E03A9C%40nat.bg