Microsoft Office Web Components is prone to a remote code-execution vulnerability that affects an unspecified ActiveX control. The control is identified by the following CLSIDs:
An attacker could exploit this issue by enticing a victim to visit a maliciously crafted site.
Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in user.
Published: Jul 13 2009 12:00AM
Updated: Jul 13 2009 05:06PM