CVE-2002-0727

Sažetak

The Host function in Microsoft Office Web Components (OWC) 2000 and 2002 is exposed in components that are marked as safe for scripting, which allows remote attackers to execute arbitrary commands via the setTimeout method.

Reference

http://marc.info/?l=bugtraq&m=101829645415486&w=2
http://www.iss.net/security_center/static/8777.php
http://www.osvdb.org/3006
http://www.securityfocus.com/bid/4449
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-044

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

12-10-2018 - 21:31

Objavljeno

24-09-2002 - 04:00