Back
CVE-2000-0277
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability.
Published: Apr 3, 2000
Modified: Apr 16, 2026
CWE-254
CVSS Metrics
Affected Products (2)
| Vendor | Product | Version |
|---|---|---|
| microsoft | excel | 97 |
| microsoft | excel | 2000 |
GitHub Security Advisory GHSA-j2mj-gpqp-ph4f
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM)...
References (6)
- http://www.osvdb.org/1272 Broken Link
- http://www.securityfocus.com/bid/1087 Third Party Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-022
- http://www.osvdb.org/1272 Broken Link
- http://www.securityfocus.com/bid/1087 Third Party Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-022
Risk Scores
CVSS Score
7.2 / 10
EPSS Score
1.67%
Top 18% most likely to be exploited
Threat Score
29.3 / 100
Data Sources
NVD
EPSS
GitHub