cve/2002/CVE-2002-1143.md

### [CVE-2002-1143](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1143)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka "Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure."

### POC

#### Reference
- http://marc.info/?l=bugtraq&m=103040003014999&w=2
- http://marc.info/?l=bugtraq&m=103252858816401&w=2

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2002-1143](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1143)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information when the document is returned to the attacker, as demonstrated in Word using (1) INCLUDETEXT or (2) INCLUDEPICTURE, aka "Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure."`

			`### POC`

			`#### Reference`
			`- http://marc.info/?l=bugtraq&m=103040003014999&w=2`
			`- http://marc.info/?l=bugtraq&m=103252858816401&w=2`

			`#### Github`
			`No PoCs found on GitHub currently.`