Lucene search

PRIOn knowledge basePRION:CVE-2011-0093

HistoryFeb 10, 2011 - 4:00 p.m.

Memory corruption

2011-02-1016:00:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.517 Medium

EPSS

Percentile

97.6%

JSON

ELEMENTS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 does not properly parse structures during the opening of a Visio file, which allows remote attackers to execute arbitrary code via a file containing a malformed structure, aka “Visio Data Type Memory Corruption Vulnerability.”

CPENameOperatorVersion
visioeq2007 sp2
visioeq2002 sp2
visioeq2003 sp3

Name	Operator	Version
visio	eq	2007 sp2
visio	eq	2002 sp2
visio	eq	2003 sp3

References

osvdb.org/70829

secunia.com/advisories/43254

www.securityfocus.com/bid/46138

www.securitytracker.com/id?1025043

www.vupen.com/english/advisories/2011/0321

docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-008

exchange.xforce.ibmcloud.com/vulnerabilities/64924

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12469

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.517 Medium

EPSS

Percentile

97.6%

JSON

Related for PRION:CVE-2011-0093