Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-46137
HistoryFeb 08, 2011 - 12:00 a.m.

Microsoft Visio Object Memory Corruption (CVE-2011-0092) Remote Code Execution Vulnerability

2011-02-0800:00:00
Symantec Security Response
www.symantec.com
8

0.852 High

EPSS

Percentile

98.2%

JSON

Description

Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.

Technologies Affected

  • Microsoft Visio 2002
  • Microsoft Visio 2002 Professional SP2
  • Microsoft Visio 2002 SP1
  • Microsoft Visio 2002 SP2
  • Microsoft Visio 2002 SP3
  • Microsoft Visio 2002 Standard SP2
  • Microsoft Visio 2003 SP1
  • Microsoft Visio 2003
  • Microsoft Visio 2003 Professional
  • Microsoft Visio 2003 SP2
  • Microsoft Visio 2003 SP3
  • Microsoft Visio 2003 Standard
  • Microsoft Visio 2007
  • Microsoft Visio 2007 SP1
  • Microsoft Visio 2007 SP2

Recommendations

Run all software as a nonprivileged user with minimal access rights.
To reduce the impact of latent vulnerabilities, always run nonadministrative software as an unprivileged user with minimal access rights.

Do not accept or execute files from untrusted or unknown sources.
To reduce the likelihood of successful exploits, never handle files that originate from unfamiliar or untrusted sources.

Implement multiple redundant layers of security.
Since this issue may be leveraged to execute code, we recommend memory-protection schemes, such as nonexecutable stack/heap configurations and randomly mapped memory segments. This tactic may complicate exploit attempts of memory-corruption vulnerabilities.

The vendor has released an advisory and fixes. Please see the references for more information.

Related

cve 1
cvelist 1
zdi 1
checkpoint_advisories 1
prion 1
securityvulns 2
nessus 1
openvas 2
cve
cve
CVE-2011-0092
2011-02-10 16:00:00
cvelist
cvelist
CVE-2011-0092
2011-02-10 15:00:00
zdi
zdi
Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability
2011-02-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Visio ORMELEMS.DLL Object Memory Corruption (MS11-008; CVE-2011-0092)
2011-02-15 00:00:00
prion
prion
Memory corruption
2011-02-10 16:00:00
securityvulns
securityvulns
ZDI-11-063: Microsoft Visio 2007 LZW Stream Decompression Exception Vulnerability
2011-02-11 00:00:00
Microsoft Visio multiple security vulnerabilities
2011-02-11 00:00:00
nessus
nessus
MS11-008: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (2451879)
2011-02-08 00:00:00
openvas
openvas
Microsoft Visio Remote Code Execution Vulnerabilities (2451879)
2011-02-09 00:00:00
Microsoft Visio Remote Code Execution Vulnerabilities (2451879)
2011-02-09 00:00:00

0.852 High

EPSS

Percentile

98.2%

JSON
Related for SMNTC-46137
cve1cvelist1zdi1checkpoint_advisories1prion1securityvulns2nessus1openvas2