Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
visio vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2016-3235
Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."...
Microsoft Visio Viewer 2010
Microsoft Visio Viewer 2007
Microsoft Visio 2016
Microsoft Visio 2013
Microsoft Visio 2010
Microsoft Visio 2007
1 EDB exploit
9.3
CVSSv2
CVE-2009-0095
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly validate object data in Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Memory Validation Vulnerability."
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
9.3
CVSSv2
CVE-2009-0097
Microsoft Office Visio 2002 SP2 and 2003 SP3 does not properly validate memory allocation for Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Memory Corruption Vulnerability."
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
7.6
CVSSv2
CVE-2010-0254
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly validate attributes in Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Visio Attribute Validation Memory Corruption Vulnerability."
Microsoft Visio 2007
Microsoft Visio 2002
Microsoft Visio 2003
7.6
CVSSv2
CVE-2010-0256
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly calculate unspecified indexes associated with Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Visio Index Calculation Memory Corruption Vulne...
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
9.3
CVSSv2
CVE-2011-0092
The LZW stream decompression functionality in ORMELEMS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 allows remote malicious users to execute arbitrary code via a Visio file with a malformed VisioDocument stream that triggers an exception handler that accesses an object...
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
7.6
CVSSv2
CVE-2010-1681
Buffer overflow in VISIODWG.DLL prior to 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote malicious users to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE-2010-0254 and CVE-2010-0256.
Microsoft Visio 2007
Microsoft Visio 2002
Microsoft Visio 2003
2 EDB exploits
9.3
CVSSv2
CVE-2009-0096
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operations for object data, which allows remote malicious users to execute arbitrary code via a crafted Visio document, aka "Memory Corruption Vulnerability."
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
9.3
CVSSv2
CVE-2011-1972
Microsoft Visio 2003 SP3, 2007 SP2, and 2010 Gold and SP1 does not properly validate objects in memory during Visio file parsing, which allows remote malicious users to execute arbitrary code via a crafted file, aka "pStream Release RCE Vulnerability."
Microsoft Visio 2007
Microsoft Visio 2003
Microsoft Visio 2010
4.3
CVSSv2
CVE-2013-1301
Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote malicious users to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, aka "XML External Entities Resolution Vulnerability."
Microsoft Visio 2003
Microsoft Visio 2007
Microsoft Visio 2010
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »