Microsoft Visio Viewer VSD File Format Remote Code Execution Vulnerability(CVE-2012-0018)
Severity: CRITICAL
CVE Identifier: CVE-2012-0018,MS12-031
Advisory Date: JUL 21, 2015
DESCRIPTION
Microsoft Visio Viewer 2010 Gold and SP1 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "VSD File Format Memory Corruption Vulnerability."
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005026
Trend Micro Deep Security DPI Rule Name: 1005026 - Microsoft Visio Viewer VSD File Format Remote Code Execution Vulnerability (CVE-2012-0018)
AFFECTED SOFTWARE AND VERSION
- microsoft visio_viewer 2010