How to fix errors highlighted by Trend mirco (MS00-034) (MS01-028)

Eugene London
07-09-2005, 11:36 PM
I ran a free housecall Virus check with Trend Micro and it came up with the
following info.........

(MS00-034) Office 2000 UA Control Vulnerability
Vulnerability Identifier: CVE-2000-0419
Risk: Critical
Discovery Date: May 12, 2000
Vulnerability Assessment Pattern File: 008
Related Malware: VBS_DAVINIA.A

Affected Software
· Word 2000
· Excel 2000
· Powerpoint 2000
· Access 2000
· Photodraw 2000
· FrontPage 2000
· Project 2000
· Publisher 2000
· Outlook 2000
· Works 2000 Suite
Description
This vulnerability allows a remote attacker to conduct unauthorized
activities via the Show Me function in Office Help, since Office 2000 UA
ActiveX Control is marked as safe for scripting.

(MS01-028) RTF Document Linked to Template Can Run Macros Without Warning
Vulnerability Identifier: CVE-2001-0240
Risk: Critical
Discovery Date: May 21, 2001
Vulnerability Assessment Pattern File: 008
Related Malware: W97M_GOGA.A

Affected Software
· Microsoft Word 97
· Microsoft Word 2000
· Microsoft Word 98 (J)
· Microsoft Word 98 for the Mac
· Microsoft Word 2001 for the Mac
Description
This vulnerability allows attackers to execute macros without user warning.
It is done by linking a Rich Text Format document to a template that contains
an embedded macro.

Can you advised me as to how i get rid of these problems

Thanks Eugene
MowGreen [MVP]
07-09-2005, 11:37 PM
Eugene,

Using Internet Explorer, go here to scan for needed Office updates :
http://office.microsoft.com/en-us/officeupdate/default.aspx

MowGreen [MVP 2004-2005]
===============
*-343-* FDNY
Never Forgotten
================


Eugene London wrote:

> I ran a free housecall Virus check with Trend Micro and it came up with the
> following info.........
>
> (MS00-034) Office 2000 UA Control Vulnerability
> Vulnerability Identifier: CVE-2000-0419
> Risk: Critical
> Discovery Date: May 12, 2000
> Vulnerability Assessment Pattern File: 008
> Related Malware: VBS_DAVINIA.A
>
> Affected Software
> · Word 2000
> · Excel 2000
> · Powerpoint 2000
> · Access 2000
> · Photodraw 2000
> · FrontPage 2000
> · Project 2000
> · Publisher 2000
> · Outlook 2000
> · Works 2000 Suite
> Description
> This vulnerability allows a remote attacker to conduct unauthorized
> activities via the Show Me function in Office Help, since Office 2000 UA
> ActiveX Control is marked as safe for scripting.
>
> (MS01-028) RTF Document Linked to Template Can Run Macros Without Warning
> Vulnerability Identifier: CVE-2001-0240
> Risk: Critical
> Discovery Date: May 21, 2001
> Vulnerability Assessment Pattern File: 008
> Related Malware: W97M_GOGA.A
>
> Affected Software
> · Microsoft Word 97
> · Microsoft Word 2000
> · Microsoft Word 98 (J)
> · Microsoft Word 98 for the Mac
> · Microsoft Word 2001 for the Mac
> Description
> This vulnerability allows attackers to execute macros without user warning.
> It is done by linking a Rich Text Format document to a template that contains
> an embedded macro.
>
> Can you advised me as to how i get rid of these problems
>
> Thanks Eugene
>

How to fix errors highlighted by Trend mirco (MS00-034) (MS01-028)