Microsoft Visio DXF file insertion buffer overflowAdded: 05/07/2010
BackgroundMicrosoft Visio is a component of the Microsoft Office suite which provides the capability to produce diagrams.
ProblemA buffer overflow vulnerability allows command execution when a user inserts a specially crafted DXF file into a Visio document.
ResolutionApply the patch found in Microsoft Security Bulletin 10-028.
LimitationsExploit works on Microsoft Visio 2002 SP2 and requires a user to drag and drop the exploit file into Visio.
Back to exploit index