21 matches found
Microsoft Office Visio 资源管理错误漏洞
Microsoft Office is a widely used office software suite that includes Word, Excel, PowerPoint, Visio, and other components that provide document editing, data analysis, presentation creation, and more. A remote code execution vulnerability exists in Microsoft Office Visio, which arises due to Use...
CVE-2013-0079
Microsoft Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file that triggers incorrect memory allocation, aka "Visio Viewer Tree Object Type Confusion Vulnerability."...
CVE-2013-0079
CVE-2013-0079 affects Microsoft Visio Viewer 2010 SP1. The vulnerability is described as a memory allocation error in the Visio Tree Object Confusion vulnerability that allows remote code execution when processing a crafted Visio file. Connected sources corroborate, noting this is addressed by Mi...
Microsoft Filter Pack Remote Code Execution Vulnerability (2801261)
This host is missing a critical security update according to Microsoft Bulletin MS13-023. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Filter Pack Remote Code Execution Vulnerability (2801261)
This host is missing a critical security update according to Microsoft Bulletin MS13-023. OpenVAS Vulnerability Test $Id: secpodfilterpackms13-023.nasl 5365 2017-02-20 13:46:09Z cfi $ Microsoft Filter Pack Remote Code Execution Vulnerability 2801261 Authors: Antu Sanadi Copyright: Copyright c 201...
CVE-2012-1888
Buffer overflow in Microsoft Visio 2010 SP1 and Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file, aka "Visio DXF File Format Buffer Overflow Vulnerability."...
Microsoft Office Visio/Viewer Remote Code Execution Vulnerability (2733918)
This host is missing an important security update according to Microsoft Bulletin MS12-059. OpenVAS Vulnerability Test $Id: secpodms12-059.nasl 5963 2017-04-18 09:02:14Z teissa $ Microsoft Office Visio/Viewer Remote Code Execution Vulnerability 2733918 Authors: Antu Sanadi Copyright: Copyright c...
CVE-2012-0019
Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0020...
CVE-2012-0137
Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019...
Memory corruption
Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019...
CVE-2012-0019
Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0020...
CVE-2012-0020
Microsoft Visio Viewer 2010 Gold/SP1 and related Visio components are affected by a memory-corruption vulnerability when parsing VSD files, enabling remote code execution via crafted attributes. The issue covers multiple CVEs (CVE-2012-0019, -0020, -0136, -0137, -0138) and is addressed by Microso...
MS12-015: Vulnerabilities in Microsoft Visio Viewer 2010 Could Allow Remote Code Execution (2663510)
The version of Microsoft Visio Viewer installed on the remote Windows host is reportedly affected by several memory corruption vulnerabilities due to the way the application handles memory when parsing specially crafted Visio files. An attacker who tricked a user on the affected host into opening...
Memory corruption
The LZW stream decompression functionality in ORMELEMS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 allows remote attackers to execute arbitrary code via a Visio file with a malformed VisioDocument stream that triggers an exception handler that accesses an object that has not been full...
Microsoft Ships 12 Bulletins in February's Patch Tuesday
Microsoft addressed 22 flaws with 12 separate bulletins in February’s edition of Patch Tuesday, including three bulletins that were rated critical with the remaining nine rated as important. Among the programs affected are Microsoft Windows, Internet Explorer, Office, Visual Studio, and IIS. The...
Microsoft Office Visio DXF File Inserting Buffer Overflow (CVE-2010-1681)
Microsoft Visio is a diagram creation software for Microsoft Windows. A buffer overflow vulnerability exists in Microsoft Office Visio. The vulnerability is due to a boundary error in Microsoft Office Visio when parsing DXF files inserted into Visio documents. This vulnerability may be exploited ...
Sophos Anti-Virus Visio File Parsing Buffer Overflow (CVE-2005-2768)
There exists a buffer overflow vulnerability in the Visio file scanning component of Sophos Anti-Virus. The vulnerability is caused by the lack of proper boundary verification of user supplied data. By sending a crafted Visio file to a target running the vulnerable product, a remote attacker can...
CVE-2007-0936
Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow remote user-assisted attackers to execute arbitrary code via a Visio .VSD, VSS, .VST file with a crafted packed object that triggers memory corruption, aka "Visio Document Packaging Vulnerability."...
CVE-2005-2768
Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length...
CVE-2005-2768
Heap-based buffer overflow in the Sophos Antivirus Library, as used by Sophos Antivirus, PureMessage, MailMonitor, and other products, allows remote attackers to execute arbitrary code via a Visio file with a crafted sub record length...