PT-2012-2246 · Microsoft · Visio Viewer

Published

2012-02-14

Updated

2018-10-12

CVE-2012-0020

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019, CVE-2012-0136, CVE-2012-0137, and CVE-2012-0138.

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2012-0020

Affected Products

Visio Viewer

PT-2012-2246 · Microsoft · Visio Viewer

CVE-2012-0020

Weakness Enumeration

Related Identifiers

Affected Products

References · 4