Microsoft Visio Viewer VSD File Format CVE-2012-0019 Remote Code Execution Vulnerability
BID:51903
Info
Microsoft Visio Viewer VSD File Format CVE-2012-0019 Remote Code Execution Vulnerability
| Bugtraq ID: | 51903 |
| Class: | Unknown |
| CVE: |
CVE-2012-0019 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 14 2012 12:00AM |
| Updated: | Feb 14 2012 12:00AM |
| Credit: | Xin Ouyang of Palo Alto Networks |
| Vulnerable: |
Microsoft Visio Viewer 2010 (64-bit Edition) SP1 Microsoft Visio Viewer 2010 (64-bit Edition) 0 Microsoft Visio Viewer 2010 (32-bit Edition) SP1 Microsoft Visio Viewer 2010 (32-bit Edition) 0 |
| Not Vulnerable: | |
Discussion
Microsoft Visio Viewer VSD File Format CVE-2012-0019 Remote Code Execution Vulnerability
Microsoft Visio Viewer is prone to a remote code-execution vulnerability.
Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.
Microsoft Visio Viewer is prone to a remote code-execution vulnerability.
Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.
Exploit / POC
Microsoft Visio Viewer VSD File Format CVE-2012-0019 Remote Code Execution Vulnerability
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft Visio Viewer VSD File Format CVE-2012-0019 Remote Code Execution Vulnerability
Solution:
Vendor updates are available. Please see the references for more information.
Microsoft Visio Viewer 2010 (32-bit Edition) SP1
Microsoft Visio Viewer 2010 (32-bit Edition) 0
Microsoft Visio Viewer 2010 (64-bit Edition) SP1
Solution:
Vendor updates are available. Please see the references for more information.
Microsoft Visio Viewer 2010 (32-bit Edition) SP1
-
Microsoft Security Update for Microsoft Visio Viewer 2010 (KB2597170) 32-Bit Edition
http://www.microsoft.com/downloads/details.aspx?familyid=173dc4e6-31b4 -42ec-808c-f8cd005517ab
Microsoft Visio Viewer 2010 (32-bit Edition) 0
-
Microsoft Security Update for Microsoft Visio Viewer 2010 (KB2597170) 32-Bit Edition
http://www.microsoft.com/downloads/details.aspx?familyid=173dc4e6-31b4 -42ec-808c-f8cd005517ab
Microsoft Visio Viewer 2010 (64-bit Edition) SP1
-
Microsoft Security Update for Microsoft Visio Viewer 2010 (KB2597170) 64-Bit Edition
http://www.microsoft.com/downloads/details.aspx?familyid=34b234e1-1322 -4edc-829c-7bc2fbd99338
References
Microsoft Visio Viewer VSD File Format CVE-2012-0019 Remote Code Execution Vulnerability
References:
References:
- Visio Homepage (Microsoft)
- Microsoft Security Bulletin MS12-015 (Microsoft)