exploitDog

CVE-2002-1339

Опубликовано: 18 дек. 2002

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirections, which allows remote attackers to determine the existence of local files based on exceptions, or to read WorkSheet XML files.

Ссылки

http://marc.info/?l=bugtraq&m=101830175621193&w=2
http://security.greymagic.com/adv/gm008-ie/
Exploit
Patch
Vendor Advisory
http://marc.info/?l=bugtraq&m=101830175621193&w=2
http://security.greymagic.com/adv/gm008-ie/
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:office_web_components:2002:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.1407

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3vxf-84gf-58q9

github

больше 3 лет назад

The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirections, which allows remote attackers to determine the existence of local files based on exceptions, or to read WorkSheet XML files.

EPSS

Процентиль: 94%

0.1407

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other