Lucene search
MitreCVE-2002-0860HistoryApr 02, 2003 - 5:00 a.m.
CVE-2002-0860
2003-04-0205:00:00
mitre
web.nvd.nist.gov
23
microsoft
office
web components
owc
2000
2002
loadtext
remote attack
file read
internet explorer
cve-2002-0860
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.026
Percentile
90.4%
The LoadText method in the spreadsheet component in Microsoft Office Web Components (OWC) 2000 and 2002 allows remote attackers to read arbitrary files through Internet Explorer via a URL that redirects to the target file.
Affected configurations
Node
microsoftoffice_web_componentsMatch2000
ORmicrosoftoffice_web_componentsMatch2002
ORmicrosoftprojectMatch2000
ORmicrosoftprojectMatch2002
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | office_web_components | 2000 | cpe:2.3:a:microsoft:office_web_components:2000:*:*:*:*:*:*:* |
| microsoft | office_web_components | 2002 | cpe:2.3:a:microsoft:office_web_components:2002:*:*:*:*:*:*:* |
| microsoft | project | 2000 | cpe:2.3:a:microsoft:project:2000:*:*:*:*:*:*:* |
| microsoft | project | 2002 | cpe:2.3:a:microsoft:project:2002:*:*:*:*:*:*:* |
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.026
Percentile
90.4%
Related for CVE-2002-0860