CVE-2002-0860

CVE Database · CVE-2002-0860

CVE-2002-0860

· N/AModified

CVSS v3.1

N/A

EPSS

18.77%

Published

Sep 24, 2002

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The LoadText method in the spreadsheet component in Microsoft Office Web Components (OWC) 2000 and 2002 allows remote attackers to read arbitrary files through Internet Explorer via a URL that redirects to the target file.

Affected Products (4)

microsoft · office_web_componentsvulnerable

microsoft · projectvulnerable

References (10)

http://marc.info/?l=bugtraq&m=101829911018463&w=2

http://www.iss.net/security_center/static/8778.php

PatchVendor Advisory

http://www.osvdb.org/3007

http://www.securityfocus.com/bid/4453

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-044