CVE-2002-1339

CVE Database · CVE-2002-1339

CVE-2002-1339

· N/AModified

CVSS v3.1

N/A

EPSS

11.97%

Published

Dec 18, 2002

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirections, which allows remote attackers to determine the existence of local files based on exceptions, or to read WorkSheet XML files.

Affected Products (1)

microsoft · office_web_componentsvulnerable

References (4)

http://marc.info/?l=bugtraq&m=101830175621193&w=2

http://security.greymagic.com/adv/gm008-ie/

ExploitPatchVendor Advisory

http://marc.info/?l=bugtraq&m=101830175621193&w=2

http://security.greymagic.com/adv/gm008-ie/

ExploitPatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs