Thread: XML / XSL security problem
View Single Post
  #2   Report Post  
Posted to microsoft.public.excel.programming
Wei-Dong Xu [MSFT] Wei-Dong Xu [MSFT] is offline
external usenet poster
  
Posts: 120
Default XML / XSL security problem
Hi steve,

Thank you for the replying and patience!

Based on my research, Excel 2002 will treats all XSL files as potentially
harmful, similar to macro code. So in High security Excel will not give you
the option of applying the transform to the document. It should still open
the XML file without the transform.

Excel 2003 can determine whether or not an XSL contains anything that is
potentially harmful. So even in High security if the XSL doesn't contain
script (or several other attributes that could be dangerous) Excel will
still give you the option of applying the transform.

From your description, you are using one "safe" stylesheet, therefore Excel
2003 will apply it no matter what security mode is set.

Please feel free to let me know if you have any further questions. I am
standing by to be of assistance.

Does this answer your question? Thank you for using Microsoft NewsGroup!

Wei-Dong Xu
Microsoft Product Support Services
Get Secure! - www.microsoft.com/security
This posting is provided "AS IS" with no warranties, and confers no rights.

Reply With QuoteReply With Quote