|
|
Microsoft Office CDO Protocol Cross Site Scripting Vulnerability
|
Bugtraq ID:
|
31693
|
|
Class:
|
Design Error
|
|
CVE:
|
CVE-2008-4020
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Oct 14 2008 12:00AM
|
|
Updated:
|
Oct 14 2008 06:07PM
|
|
Credit:
|
This issue was privately reported to Microsoft.
|
|
Vulnerable:
|
Microsoft Office XP SP3
+
Microsoft Excel 2002 SP3
+
Microsoft Excel 2002 SP3
+
Microsoft FrontPage 2002 SP3
+
Microsoft FrontPage 2002 SP3
+
Microsoft Outlook 2002 SP3
+
Microsoft Outlook 2002 SP3
+
Microsoft PowerPoint 2002 SP3
+
Microsoft PowerPoint 2002 SP3
+
Microsoft Publisher 2002 SP3
+
Microsoft Publisher 2002 SP3
|
|
|
|
Not Vulnerable:
|
|
|
|
