CVE-2000-0597

CVE Database · CVE-2000-0597

CVE-2000-0597

· N/AModified

CVSS v3.1

N/A

EPSS

12.15%

Published

Jun 27, 2000

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications (VBA) SaveAs function, aka the "Office HTML Script" vulnerability.

Affected Products (3)

microsoft · excelvulnerable

microsoft · powerpointvulnerable

References (6)

http://www.securityfocus.com/bid/1399

http://www.securityfocus.com/templates/archive.pike?list=1&msg=39589349.ED9DBCAB%40nat.bg

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-049

http://www.securityfocus.com/bid/1399

http://www.securityfocus.com/templates/archive.pike?list=1&msg=39589349.ED9DBCAB%40nat.bg

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-049

KEV Catalog EPSS Scores Vendors All CVEs