35 matches found
VulnCheck KEV: CVE-2009-2501
Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold...
VulnCheck KEV: CVE-2009-3126
Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3,...
Microsoft Office Visio VISIODWG.DLL DXF File Handling Vulnerability
$Id: visiodxfbof.rb 13034 2011-06-26 16:09:53Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Memory corruption
ELEMENTS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 does not properly parse structures during the opening of a Visio file, which allows remote attackers to execute arbitrary code via a file containing a malformed structure, aka "Visio Data Type Memory Corruption Vulnerability."...
Month Of Abysssec Undisclosed Bugs - Microsoft Office Visio Overflow
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/ http://www.exploit-db.com/sploits/moaub-8-exploit.zip ''' ''' Title :...
Microsoft Visio 2002 - .DXF Local Stack Overflow
Microsoft Visio 2002 - .DXF Local Stack Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/...
Microsoft Visio 2002 - '.DXF' Local Stack Overflow
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 8 Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/...
Microsoft Visio DXF file insertion buffer overflow
Added: 05/07/2010 CVE: CVE-2010-1681 BID: 39836 Background Microsoft Visio is a component of the Microsoft Office suite which provides the capability to produce diagrams. Problem A buffer overflow vulnerability allows command execution when a user inserts a specially crafted DXF file into a Visio...
Microsoft Visio Remote Code Execution Vulnerabilities (980094)
This host is missing a critical security update according to Microsoft Bulletin MS10-028. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Security Update for Microsoft Visio 2002 (KB979364)
A security vulnerability exists in Microsoft Visio 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Heap overflow
Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and...
Integer overflow
Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3, Offic...
PT-2009-4908 · Microsoft · Works +26
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6 SP1 Windows XP versions SP2 and SP3 Office XP version SP3 Office 2003 version SP3 2007 Microsoft Office System versions SP1 and SP2 Office Project 2002 version SP1 Visio 2002 version SP2 Office Word Viewe...
Security Update for Microsoft Visio 2002 (KB975365)
A security vulnerability exists in Microsoft Visio 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Microsoft GDI+ PNG File Integer Overflow Remote Code Execution Vulnerability
Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes PNG image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...
Security Update for Microsoft Visio 2002 (KB955654)
A security vulnerability exists in Microsoft Visio 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Microsoft Visio Memory Corruption Remote Code Execution Vulnerability
Description Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts will result in a...
Microsoft Security Bulletin MS08-052 – Critical Vulnerabilities in GDI+ Could Allow Remote Code Execution (954593)
Microsoft Security Bulletin MS08-052 – Critical Vulnerabilities in GDI+ Could Allow Remote Code Execution 954593 Published: September 9, 2008 Version: 1.0 General Information Executive Summary This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. Thes...
CVE-2008-1089
Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a Visio file containing crafted object header data, aka "Visio Object Header Vulnerability."...
Microsoft Visio文档封装远程代码执行漏洞(MS07-030)
Microsoft Visio是Office套件中用于绘制流程图的软件。 Microsoft Visio解析Visio文件格式中的打包对象的方式存在内存破坏漏洞,成功利用此漏洞的攻击者可能完全控制受影响的系统。 攻击者可能通过创建恶意Visio(.VSD、.VSS或.VST)文件诱使用户打开处理来利用此漏洞,如果用户访问恶意网站或打开电子邮件中包含的特制Visio附件,则这些文件可能允许远程执行指令。 Microsoft Visio 2003 Microsoft Visio 2002 临时解决方法: 不要打开或保存从不受信任来源或从受信任来源意外收到的Microsoft Visio文件。...