Gravité: : Critique
  Identifiant(s) CVE: : CVE-2012-0018,MS12-031
  Date du conseil: 21 juillet 2015

  Description

Microsoft Visio Viewer 2010 Gold and SP1 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "VSD File Format Memory Corruption Vulnerability."

  Information Exposure Rating:

Apply associated Trend Micro DPI Rules.

  Solutions

  Trend Micro Deep Security DPI Rule Number: 1005026
  Trend Micro Deep Security DPI Rule Name: 1005026 - Microsoft Visio Viewer VSD File Format Remote Code Execution Vulnerability (CVE-2012-0018)

  Affected software and version:

  • microsoft visio_viewer 2010