Microsoft Office CVE-2016-3235 DLL Loading Local Privilege Escalation Vulnerability

Description Microsoft Office is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Visio 2007 Service Pack 3 Microsoft Visio 2010 Service Pack 2 32-bit editions Microsoft...

PT-2016-2169 · Microsoft · Office Visio +1

Name of the Vulnerable Software and Affected Versions: Microsoft Visio versions 2007 SP3 through 2016 Microsoft Visio Viewer versions 2007 SP3 through 2010 Description: The issue is related to errors in library loading, which can allow a remote attacker to elevate their privileges using a special...

Xxe

Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, aka "XML External Entities Resolution Vulnerability."...

ZDI-11-063: Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability

ZDI-11-063: Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-063 February 8, 2011 -- CVE ID: CVE-2011-0092 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Other -- Vulnerability Details: This vulnerability allo...

Memory corruption

ELEMENTS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 does not properly parse structures during the opening of a Visio file, which allows remote attackers to execute arbitrary code via a file containing a malformed structure, aka "Visio Data Type Memory Corruption Vulnerability."...

Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Visio...

Microsoft Visio 2007 DLL Hijacking Exploit (mfc80esn.dll)

Exploit for windows platform in category local exploits / ========================================================= Microsoft Visio 2007 DLL Hijacking Exploit mfc80esn.dll ========================================================= $ Program: MS Visio $ Version: 2007 $ Download:...

Microsoft Visio Remote Code Execution Vulnerabilities (980094)

This host is missing a critical security update according to Microsoft Bulletin MS10-028. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Visual Studio ATL 'VariantClear()' Remote Code Execution Vulnerability

Description Microsoft Visual Studio is prone to a remote code-execution vulnerability in the Active Template Library ATL. Remote attackers can exploit this issue to execute arbitrary code with the privileges of the user running an application built with the affected library. Technologies Affected...

Microsoft Visio Memory Corruption Remote Code Execution Vulnerability

Description Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts will result in a...

CVE-2008-1089

Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a Visio file containing crafted object header data, aka "Visio Object Header Vulnerability."...

Update for Microsoft Office Visio 2007 suites (KB2817561)

Update for Microsoft Office Visio 2007 suites KB2817561...

Security Update for Microsoft Office Visio 2007 suites (KB3114421)

A security vulnerability exists in Microsoft Office Visio 2007 suites that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

Security update 1970-01-01

...

Security Update for Microsoft Office Visio 2007 (KB979365)

A security vulnerability exists in Microsoft Office Visio 2007 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

Security Update for Microsoft Office Visio 2007 suites (KB3114740)

A security vulnerability exists in Microsoft Office Visio 2007 suites that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...