Subscribe to Windows IT Pro
October 05, 2001 12:00 AM

Excel and Powerpoint Macro Checking Bypass

M Edwards
Windows IT Pro
InstantDoc ID #22789
Rating: (0)

Reported October 5, 2001, by Peter Ferrie.

VERSIONS AFFECTED

  • Microsoft Excel 98, 2000, 2001, 2002

  • Microsoft PowerPoint 98, 2000, 2001, 2002

DESCRIPTION

A vulnerability exists in Microsoft Excel and PowerPoint (for Windows and Macintosh) that might let a malicious user bypass macro-checking to automatically execute a script when opening a document.

 

VENDOR RESPONSE

Microsoft released security bulletin MS01-050 to address this problem. The bulletin lists the patches and patch installation instructions.

CREDIT
Discovered by Peter Ferrie, Symantec Security Response.

Related Content:

ARTICLE TOOLS

Comments
Add A Comment
  • Jim Larscheid
    11 years ago
    Oct 12, 2001




    When I tried to install these patches, I got a message indicating I needed to put the original Office 2000 CD in my CD-ROM drive. While this doesn't present a problem on one or two machines, I want to push the patches by login script. Since Office 2000 was installed by CD (sometimes different CD's, depending on the product requirements of the user), I can't use the login script to push the patches unless someone is at the machine ready to put the CD in.

  • Mike Gibbons
    11 years ago
    Oct 05, 2001




    I tried to apply this patch. The install started ok, then came up with an error that the install program could not write to excel.exe/powerpnt.exe. I don't know if the patch succeeded or not.

You must log on before posting a comment.

Are you a new visitor? Register Here

advertisement

advertisement

Dev Pro Left-Brain SharePoint Pro SQL Server Pro SuperSite for Windows Windows IT Pro

© 2012 Penton Media, Inc.

Home About Us Advertise Customer Service Privacy Statement Subscribe/Renew Terms Of Use

Windows is a trademark of the Microsoft group of companies. Windows IT Pro is used by Penton Media Inc. under license from owner.