Buffer Overflow Vulnerability in Microsoft Visio by Microsoft
CVE-2015-2557

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visio
Vendor: CVE Published:; 14 October 2015

Summary

A buffer overflow vulnerability exists in Microsoft Visio 2007 SP3 and 2010 SP2, which could allow remote attackers to execute arbitrary code by sending specially crafted UML data within an Office document. This flaw underscores the importance of securing documents before opening them, as successful exploitation can lead to unauthorized access and control of affected systems.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.zerodayinitiative.com/advisories/ZDI-15-519

x_refsource_MISC

http://www.securitytracker.com/id/1033803

vdb-entryx_refsource_SECTRACK

EPSS Score

28% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 14, 2015
Vulnerability Reserved
Mar 19, 2015