CVE-2010-0256

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly calculate unspecified indexes associated with Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Visio Index Calculation Memory Corruption Vulnerability."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:visio:2002:sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:visio:2003:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:visio:2007:sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:visio:2007:sp2:*:*:*:*:*:*

History

21 Nov 2024, 01:11

Type Values Removed Values Added
References () http://www.us-cert.gov/cas/techalerts/TA10-103A.html - US Government Resource () http://www.us-cert.gov/cas/techalerts/TA10-103A.html - US Government Resource
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-028 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-028 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6732 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6732 -

Information

Published : 2010-04-14 16:00

Updated : 2024-11-21 01:11


NVD link : CVE-2010-0256

Mitre link : CVE-2010-0256

CVE.ORG link : CVE-2010-0256


JSON object : View

Products Affected

microsoft

  • visio
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')