NVD

Id
43533  
Name
CVE-2012-1661  
Description
ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a crafted map (.mxd) file.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2012-07-12  
Modified Date
2012-07-16  
Seq
2012-1661  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
218807 43533 CVE-2012-1661 http://packetstormsecurity.org/files/113644/ESRI-ArcMap-Arbitrary-Code-Execution.html  View
218808 43533 CVE-2012-1661 http://www.cs.umb.edu/~joecohen/exploits/CVE-2012-1661/  View
218809 43533 CVE-2012-1661 19138  View
218810 43533 CVE-2012-1661 1027170  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27374 JVNDB-2012-003081 ESRI ArcMap および ArcGI における任意の VBA コードを実行される脆弱性 ESRI ArcMap および ArcGI は、埋め込みの VBA マクロを実行する前に、ユーザに適切な指示を表示しないため、任意の VBA コードを実行される脆弱性が存在します。 CVE-2012-1661 54899 CVE-2012-1661 43533 9.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003081.html 2012-07-12 2012-07-17 View