VULHUB ™

A reliable source has announced a vulnerability affecting users of Microsoft Internet Explorer and Microsoft Office XP. The vulnerability is related to Office Web Components (OWC), a set of plugins for MSIE that have been taken off of Microsoft's website for security reasons. It is possible to abuse OWC in combination with a malicious .xls or .xla file to cause an almost arbitrary file to be written to a client system. This issue affects systems that still have OWC installed and may be exploited from a malicious webpage. This issue is a variation of the problem described in Bugtraq ID 4398.

A reliable source has announced a vulnerability affecting users of Microsoft Internet Explorer and Microsoft Office XP. The vulnerability is related to Office Web Components (OWC), a set of plugins for MSIE that have been taken off of Microsoft's website for security reasons. It is possible to abuse OWC in combination with a malicious .xls or .xla file to cause an almost arbitrary file to be written to a client system. This issue affects systems that still have OWC installed and may be exploited from a malicious webpage. This issue is a variation of the problem described in Bugtraq ID 4398.