Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
visio vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-3235
Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."...
Microsoft Visio Viewer 2010
Microsoft Visio Viewer 2007
Microsoft Visio 2016
Microsoft Visio 2013
Microsoft Visio 2010
Microsoft Visio 2007
1 EDB exploit
NA
CVE-2011-0092
The LZW stream decompression functionality in ORMELEMS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 allows remote malicious users to execute arbitrary code via a Visio file with a malformed VisioDocument stream that triggers an exception handler that accesses an object...
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
NA
CVE-2011-0093
ELEMENTS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 does not properly parse structures during the opening of a Visio file, which allows remote malicious users to execute arbitrary code via a file containing a malformed structure, aka "Visio Data Type Memory Corr...
Microsoft Visio 2003
Microsoft Visio 2007
Microsoft Visio 2002
NA
CVE-2011-1972
Microsoft Visio 2003 SP3, 2007 SP2, and 2010 Gold and SP1 does not properly validate objects in memory during Visio file parsing, which allows remote malicious users to execute arbitrary code via a crafted file, aka "pStream Release RCE Vulnerability."
Microsoft Visio 2007
Microsoft Visio 2003
Microsoft Visio 2010
NA
CVE-2009-0096
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operations for object data, which allows remote malicious users to execute arbitrary code via a crafted Visio document, aka "Memory Corruption Vulnerability."
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
NA
CVE-2009-0097
Microsoft Office Visio 2002 SP2 and 2003 SP3 does not properly validate memory allocation for Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Memory Corruption Vulnerability."
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
NA
CVE-2010-0254
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly validate attributes in Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Visio Attribute Validation Memory Corruption Vulnerability."
Microsoft Visio 2007
Microsoft Visio 2002
Microsoft Visio 2003
NA
CVE-2013-1301
Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote malicious users to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, aka "XML External Entities Resolution Vulnerability."
Microsoft Visio 2003
Microsoft Visio 2007
Microsoft Visio 2010
NA
CVE-2009-0095
Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly validate object data in Visio files, which allows remote malicious users to execute arbitrary code via a crafted file, aka "Memory Validation Vulnerability."
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visio 2007
NA
CVE-2010-1681
Buffer overflow in VISIODWG.DLL prior to 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote malicious users to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE-2010-0254 and CVE-2010-0256.
Microsoft Visio 2007
Microsoft Visio 2002
Microsoft Visio 2003
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »