Vulnerability Details CVE-2002-0861
Microsoft Office Web Components (OWC) 2000 and 2002 allows remote attackers to bypass the "Allow paste operations via script" setting, even when it is disabled, via the (1) Copy method of the Cell object or (2) the Paste method of the Range object.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.062
EPSS Ranking 90.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=101829726516346&w=2
- http://www.iss.net/security_center/static/8779.php
- http://www.securityfocus.com/bid/4457
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-044
- http://marc.info/?l=bugtraq&m=101829726516346&w=2
- http://www.iss.net/security_center/static/8779.php
- http://www.securityfocus.com/bid/4457
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-044
Products affected by CVE-2002-0861
-
cpe:2.3:a:microsoft:office_web_components:2000
-
cpe:2.3:a:microsoft:office_web_components:2002
-
cpe:2.3:a:microsoft:project:2000
-
cpe:2.3:a:microsoft:project:2002