4 matches found
Microsoft Office Visio ORMELEMS.DLL Object Memory Corruption (MS11-008; CVE-2011-0092)
Microsoft Visio is a diagram creation software for Microsoft Windows. A remote code execution vulnerability has been identified in Microsoft Visio. The vulnerability is due to an error in Microsoft Visio while validating objects in memory. A remote attacker may exploit this issue by enticing a us...
ZDI-11-063: Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability
ZDI-11-063: Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-063 February 8, 2011 -- CVE ID: CVE-2011-0092 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Other -- Vulnerability Details: This vulnerability allo...
CVE-2011-0092
Microsoft Visio CVE-2011-0092 affects ORMELEMS.DLL in Visio 2002 SP2, 2003 SP3 and 2007 SP2. A malformed VisioDocument stream in a Visio file can trigger an exception handler that accesses an uninitialized object, causing memory corruption and remote code execution. The vulnerability is triggered...
Microsoft Visio Object Memory Corruption (CVE-2011-0092) Remote Code Execution Vulnerability
Description Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a...