CVE-2002-1143
CVE-2002-1143
Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka "Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure."
Productos afectados
n/a · n/aPoCs públicas encontradas — 2
exploitdbwww.exploit-db.com/exploits/21812no verificadoexploitdbwww.exploit-db.com/exploits/21764no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://marc.info/?l=bugtraq&m=103040003014999&w=2http://marc.info/?l=bugtraq&m=103252858816401&w=2https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-059https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A202http://www.iss.net/security_center/static/10008.phphttp://www.iss.net/security_center/static/10155.phphttp://www.kb.cert.org/vuls/id/899713http://www.microsoft.com/technet/treeview/default.asp?url=/Technet/security/topics/secword.asphttp://www.securityfocus.com/bid/5586http://www.securityfocus.com/bid/5764