Severity: : Critical
  CVE Kennungen: : CVE-2012-0018,MS12-031
  Advisory Date: 21 de июля de 2015

  DESCRIPTION

Microsoft Visio Viewer 2010 Gold and SP1 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "VSD File Format Memory Corruption Vulnerability."

  INFORMATION EXPOSURE

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1005026
  Trend Micro Deep Security DPI Rule Name: 1005026 - Microsoft Visio Viewer VSD File Format Remote Code Execution Vulnerability (CVE-2012-0018)

  AFFECTED SOFTWARE AND VERSION:

  • microsoft visio_viewer 2010