Lucene search

PRIOn knowledge basePRION:CVE-2010-0256

HistoryApr 14, 2010 - 4:00 p.m.

Memory corruption

2010-04-1416:00:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

High

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.423 Medium

EPSS

Percentile

97.2%

JSON

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly calculate unspecified indexes associated with Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka “Visio Index Calculation Memory Corruption Vulnerability.”

CPENameOperatorVersion
visioeq2007 sp2
visioeq2002 sp2
visioeq2003 sp3
visioeq2007 sp1

Name	Operator	Version
visio	eq	2007 sp2
visio	eq	2002 sp2
visio	eq	2003 sp3
visio	eq	2007 sp1

References

www.us-cert.gov/cas/techalerts/TA10-103A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-028

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6732

7.8 High

AI Score

Confidence

High

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.423 Medium

EPSS

Percentile

97.2%

JSON

Related for PRION:CVE-2010-0256