CVE-2002-1339

Name of the Vulnerable Software and Affected Versions: Office Web Components (OWC) 10

Description: The issue concerns the "XMLURL" property in the Spreadsheet component, which follows redirections. This allows remote attackers to determine if local files exist based on exceptions or to read WorkSheet XML files.

Recommendations: For Office Web Components (OWC) 10, consider restricting access to the Spreadsheet component until a fix is available. As a temporary workaround, avoid using the "XMLURL" property in sensitive operations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.