CVE-2009-0097

Name of the Vulnerable Software and Affected Versions Microsoft Office Visio versions 2002 SP2 through 2003 SP3

Description A remote code execution issue exists due to improper memory validation when handling Visio files. This could allow an attacker to execute arbitrary code by sending a specially crafted file, potentially via email or a compromised website. If successfully exploited, an attacker could gain complete control of the affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with limited system privileges.

Recommendations For Microsoft Office Visio versions 2002 SP2 through 2003 SP3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.