{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Office XP Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office 2003 Service Pack 3 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"2007 Microsoft Office System Service Pack 1 et 2 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Basic pour Applications ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Basic pour Applications SDK.","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans la fa\u00e7on dont Microsoft Visual\nBasic pour Applications recherche des contr\u00f4les ActiveX. Un attaquant\npeut, par le biais d'un fichier prenant en charge VBA (typiquement un\ndocument Office), ex\u00e9cuter du code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2010-0815","url":"https://www.cve.org/CVERecord?id=CVE-2010-0815"}],"links":[],"reference":"CERTA-2010-AVI-206","revisions":[{"description":"version initiale.","revision_date":"2010-05-12T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 dans <span class=\"textit\">Microsoft Visual Basic pour\nApplications</span> permet l'ex\u00e9cution de code arbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9 dans Microsoft Visual Basic pour Applications","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS10-031 du 11 mai 2010","url":"http://www.microsoft.com/technet/security/Bulletin/MS10-031.mspx"}]}