oval:org.mitre.oval:def:202

Definition Id: oval:org.mitre.oval:def:202

Oval ID:	oval:org.mitre.oval:def:202
Title:	Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure
Description:	Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka "Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2002-1143	Version:	5
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft Word 2000
Definition Synopsis:
Windows 2000 is installed AND Word 2000 is installed AND the version of winword.exe is less than 9.0.0.6926