Security Advisory

CVE-2012-1661

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-07-12 21:00:00
Last updated 2024-09-16 23:46:27
Assigner mitre
State PUBLISHED

Description

ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a crafted map (.mxd) file.