CVE-2007-0936

Name of the Vulnerable Software and Affected Versions: Microsoft Visio version 2002

Description: The issue arises from the incorrect handling of packed objects within the Visio file format, leading to potential memory corruption. This could allow a remote attacker to execute arbitrary code by constructing a malicious Visio file (.VSD, VSS, or .VST) that triggers this condition. If a user opens such a file or visits a malicious website, an attacker could potentially gain complete control of the affected system.

Recommendations: For Microsoft Visio version 2002, as a temporary workaround, consider avoiding the use of Visio files from untrusted sources until a patch is available. Restrict access to Visio files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.