CVE-2002-1338

Currently unrated

Key Information:

Vendor: Microsoft
Status: Office Web Components
Vendor: CVE Published:; 18 December 2002

Summary

The Load method in the Chart component of Office Web Components (OWC) 9 and 10 generates an exception when a specified file does not exist, which allows remote attackers to determine the existence of local files.

References

http://security.greymagic.com/adv/gm008-ie/

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/8784

vdb-entryx_refsource_XF

http://www.kb.cert.org/vuls/id/156123

third-party-advisoryx_refsource_CERT-VN

EPSS Score

3% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 18, 2002
Vulnerability Reserved
Dec 3, 2002

Collectors

NVD DatabaseMitre Database