CVE-2007-0936Out-of-bounds Write in Microsoft Office

3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
61.1%
top 1.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft OfficeMicrosoft Visio
Timeline
PublishedJun 12
Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow remote user-assisted attackers to execute arbitrary code via a Visio (.VSD, VSS, .VST) file with a crafted packed object that triggers memory corruption, aka "Visio Document Packaging Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

NVDmicrosoft/visio2002

🔴Vulnerability Details

2
GHSA
GHSA-4mqc-wp65-8q64: Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow remote user-assisted attackers to execute arbitrary code via a Visio (2022-05-01
CVEList
CVE-2007-0936: Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow remote user-assisted attackers to execute arbitrary code via a Visio (2007-06-12
CVE-2007-0936 — Out-of-bounds Write in Microsoft Office | cvebase