VYPR
Unrated severityNVD Advisory· Published Jul 12, 2012· Updated Jun 16, 2026

CVE-2012-1661

CVE-2012-1661

Description

ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a crafted map (.mxd) file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Esri/Arcmap2 versions
    cpe:2.3:a:esri:arcmap:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:esri:arcmap:*:*:*:*:*:*:*:*range: <=10.0.2.3200
    • (no CPE)range: = 9
  • Esri/ArcGIS Prollm-fuzzy
    Range: <=10.0.2.3200

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.