CVE-2002-1716 — Microsoft Office vulnerability

2 documents2 sources

Severity

5.0MEDIUMNVD

EPSS

17.0%

top 4.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Office

Timeline

PublishedDec 31

Latest updateApr 30

Description

The Host() function in the Microsoft spreadsheet component on Microsoft Office XP allows remote attackers to create arbitrary files using the SaveAs capability.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/officexp

🔴Vulnerability Details

GHSA

GHSA-vgm2-676v-827q: The Host() function in the Microsoft spreadsheet component on Microsoft Office XP allows remote attackers to create arbitrary files using the SaveAs c↗2022-04-30

▶