CVE-2012-0018

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visio Viewer
Vendor: CVE Published:; 9 May 2012

Summary

Microsoft Visio Viewer 2010 Gold and SP1 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "VSD File Format Memory Corruption Vulnerability."

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://exchange.xforce.ibmcloud.com/vulnerabilities/75115

vdb-entryx_refsource_XF

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 9, 2012
Vulnerability Reserved
Nov 9, 2011

Collectors

NVD DatabaseMitre Database