Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0861

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0861
Last Modified 10 Sep 2008 03:13:02
Published 24 Sep 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0861

Summary

Microsoft Office Web Components (OWC) 2000 and 2002 allows remote attackers to bypass the "Allow paste operations via script" setting, even when it is disabled, via the (1) Copy method of the Cell object or (2) the Paste method of the Range object.

Vulnerable Systems

Application

  • Microsoft Office Web Components 2000

  • Microsoft Office Web Components 2002

  • Microsoft Project 2000

  • Microsoft Project 2002


References

MS - MS02-044

XF - owc-spreadsheet-clipboard-access (8779)

BID - 4457

BUGTRAQ - 20020408 Controlling the clipboard with OWC in IE (GM#007-IE)


Last Updated: 27 May 2016 10:37:06