CVE-2011-1979
published 2011-08-10CVE-2011-1979: Microsoft Visio 2003 SP3 and 2007 SP2 does not properly validate objects in memory during Visio file parsing, which allows remote attackers to execute…
PriorityP356critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
22.20%
97.4th percentile
Microsoft Visio 2003 SP3 and 2007 SP2 does not properly validate objects in memory during Visio file parsing, which allows remote attackers to execute arbitrary code via a crafted file, aka "Move Around the Block RCE Vulnerability."
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | visio | — | — |
| microsoft | visio | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
http://www.us-cert.gov/cas/techalerts/TA11-221A.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-060https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12659http://www.us-cert.gov/cas/techalerts/TA11-221A.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-060https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12659
2011-08-10
Published