Описание
Microsoft Visio 2003 SP3 and 2007 SP2 does not properly validate objects in memory during Visio file parsing, which allows remote attackers to execute arbitrary code via a crafted file, aka "Move Around the Block RCE Vulnerability."
Ссылки
- US Government Resource
- US Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:visio:2003:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:visio:2007:sp2:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.5526
Средний
9.3 Critical
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
Microsoft Visio 2003 SP3 and 2007 SP2 does not properly validate objects in memory during Visio file parsing, which allows remote attackers to execute arbitrary code via a crafted file, aka "Move Around the Block RCE Vulnerability."
EPSS
Процентиль: 98%
0.5526
Средний
9.3 Critical
CVSS2
Дефекты
CWE-20