Scripting Vulnerability in Microsoft Office Web Components 2000 and 2002
CVE-2002-0727
Currently unrated
Key Information:
- Vendor
Microsoft
- Vendor
- CVE Published:
- 24 September 2002
What is CVE-2002-0727?
The Host function within Microsoft Office Web Components (OWC) versions 2000 and 2002 has a vulnerability that allows remote attackers to execute arbitrary commands through the setTimeout method. This exposure occurs in components designated as safe for scripting, leading to potential unauthorized actions on affected systems. Organizations using these versions should assess their exposure and apply security updates to mitigate risks.