Microsoft Office Visio VISIODWG.DLL DXF File Handling Vulnerability

No description provided by source. $Id: visiodxfbof.rb 13034 2011-06-26 16:09:53Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

Microsoft Office Visio VISIODWG.DLL DXF File Handling Vulnerability

This module exploits a stack based overflow vulnerability in the handling of the DXF files by Microsoft Visio 2002. Revisions prior to the release of the MS bulletin MS10-028 are vulnerable. The overflow occurs when the application is used to import a specially crafted DXF file, while parsing the...

Month Of Abysssec Undisclosed Bugs - Microsoft Office Visio Overflow

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/ http://www.exploit-db.com/sploits/moaub-8-exploit.zip ''' ''' Title :...

Microsoft Office Visio DXF File Stack based Overflow

No description provided by source. ''' Title : Microsoft Office Visio DXF File Stack based Overflow Version : Microsoft Office Visio 2002xp Analysis : http://www.abysssec.com Vendor : http://www.microsoft.com Impact : Ciritial Contact : shahin at abysssec.com , info at abysssec.com Twitter :...

Microsoft Office Visio DXF File Stack based Overflow

Exploit for windows platform in category remote exploits ==================================================== Microsoft Office Visio DXF File Stack based Overflow ==================================================== Title : Microsoft Office Visio DXF File Stack based Overflow Version : Microsoft...

Microsoft Visio 2002 - .DXF Local Stack Overflow

Microsoft Visio 2002 - .DXF Local Stack Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/...

Microsoft Visio 2002 - '.DXF' Local Stack Overflow

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/...

CVE-2010-1681

creationtimestamp| type| source ---|---|--- 2010-09-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/14944 2011-06-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/17451 2018-05-29 15:50:33+00:00| seen|...

Microsoft Office Visio DXF File Inserting Buffer Overflow - Improved Performance (CVE-2010-1681)

A buffer overflow vulnerability exists in Microsoft Office Visio. The vulnerability is due to a boundary error when parsing DXF files inserted into Visio documents. This vulnerability may be exploited by remote attackers by enticing a user to open a maliciously crafted Visio file with a vulnerabl...

Microsoft Office Visio DXF File Inserting Buffer Overflow (CVE-2010-1681)

Microsoft Visio is a diagram creation software for Microsoft Windows. A buffer overflow vulnerability exists in Microsoft Office Visio. The vulnerability is due to a boundary error in Microsoft Office Visio when parsing DXF files inserted into Visio documents. This vulnerability may be exploited ...

Microsoft Visio DXF file insertion buffer overflow

Added: 05/07/2010 CVE: CVE-2010-1681 BID: 39836 Background Microsoft Visio is a component of the Microsoft Office suite which provides the capability to produce diagrams. Problem A buffer overflow vulnerability allows command execution when a user inserts a specially crafted DXF file into a Visio...

Microsoft Visio DXF file insertion buffer overflow

Added: 05/07/2010 CVE: CVE-2010-1681 BID: 39836 Background Microsoft Visio is a component of the Microsoft Office suite which provides the capability to produce diagrams. Problem A buffer overflow vulnerability allows command execution when a user inserts a specially crafted DXF file into a Visio...

Microsoft Visio VISIODWG.DLL库缓冲区溢出漏洞（MS10-028）

BUGTRAQ ID: 39836 CVE ID: CVE-2010-1681 Visio是微软Office套件中的图形编辑工具。 Visio中所使用的VISIODWG.DLL库中存在缓冲区溢出漏洞，起因是在该库的74ef偏移处执行了不安全的strcpy调用。在将DXF文件注入到Visio文档中时（通过拖放操作或从菜单栏中选择“注入 - CAD绘图”）会加载有漏洞的函数库。成功利用这个漏洞的攻击者可以以运行Visio用户的权限执行任意代码。 微软在MS10-028公告所提供的补丁中通过使用81e7偏移处的strncpy调用替换有漏洞的调用来修复这个漏洞，但公告中并没有提及这个漏洞。...

CVE-2010-1681

CVE-2010-1681 is a buffer overflow in VISIODWG.DLL of Microsoft Office Visio triggered by parsing inserted DXF files. Affects Visio versions using VISIODWG.DLL prior to 10.0.6880.4 (patched in KB979364 / MS10-028); original vulnerable library version cited as 10.0.5006.4. Core Security CoreLabs d...

CVE-2010-1681

Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote attackers to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE-2010-0254 and CVE-2010-0256...

Microsoft Office Visio DXF File Insertion Buffer Overflow

Advisory ID Internal CORE-2010-0428 1. Advisory Information Title: Microsoft Office Visio DXF File Insertion Buffer Overflow Advisory Id: CORE-2010-0428 Advisory URL:https://www.coresecurity.com/core-labs/advisories/ms-visio-dxf-buffer-overflow Date published: 2010-05-04 Date of last update:...

[CORE-2010-0428] Microsoft Office Visio DXF File Insertion Buffer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ Microsoft Office Visio DXF File Insertion Buffer Overflow 1. Advisory Information Title: Microsoft Office Visio DXF File Insertion Buffer Overflow Advisory Id:...