MS.Visio.Object.UMLString.Heap.Overflow
Description
This indicates an attack attempt against a Memory Corruption vulnerability in Microsoft Visio.
The vulnerability is caused by an error when the software parses an invalid "attributes" field in an object header. An attacker may exploit this to execute arbitrary code, or cause a Denial of Service condition.
Affected Products
Microsoft Visio 2003 Service Pack 3
Microsoft Visio 2007 Service Pack 2
Microsoft Visio 2010 (32-bit editions) and Microsoft Visio 2010 (32-bit editions) Service Pack 1
Microsoft Visio 2010 (64-bit editions) and Microsoft Visio 2010 (64-bit editions) Service Pack 1
Impact
System compromise: Remote attackers may be able to execute arbitrary commands.
Recommended Actions
Please refer to the vendor's advisory for patches or updates:
http://www.microsoft.com/technet/security/Bulletin/ms11-060.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-07-04 | 14.643 | Sig Added |