Published: 06/05/2010 Updated: 10/10/2018

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

VMScore: 770

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Buffer overflow in VISIODWG.DLL prior to 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote malicious users to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE-2010-0254 and CVE-2010-0256.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft visio 2007
microsoft visio 2002
microsoft visio 2003

Month Of Abysssec Undisclosed Bugs - Microsoft Office Visio suffers from a DXF file stack based overflow vulnerability ...

## # $Id: visio_dxf_bofrb 13034 2011-06-26 16:09:53Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/## require 'msf/core' class M ...

''' __ __ ____ _ _ ____ | \/ |/ __ \ /\ | | | | _ \ | \ / | | | | / \ | | | | |_) | | |\/| | | | |/ /\ \| | | | _ < Day 8 (Binary Analysis) | | | | |__| / ____ \ |__| | |_) | |_| |_|\____/_/ \_\____/|____/ wwwexploit-dbcom/moaub-8-microsoft-office-visio-dxf-file-stack-overflow/ gith ...

CWE-119 http://www.coresecurity.com/content/ms-visio-dxf-buffer-overflow http://www.securityfocus.com/bid/39836 http://www.securitytracker.com/id?1023938 http://www.exploit-db.com/exploits/14944 http://www.securityfocus.com/archive/1/511121/100/0/threaded https://nvd.nist.gov https://packetstormsecurity.com/files/93630/Month-Of-Abysssec-Undisclosed-Bugs-Microsoft-Office-Visio-Overflow.html https://www.exploit-db.com/exploits/17451/

CVE-2010-1681

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect