Executive Summary
| Summary | |
|---|---|
| Title | Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (949032) |
| Informations | |||
|---|---|---|---|
| Name | MS08-019 | First vendor Publication | 2008-04-08 |
| Vendor | Microsoft | Last vendor Modification | 2008-04-08 |
| Severity (Vendor) | Important | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| This security update resolves privately reported vulnerabilities in Microsoft Office Visio that could allow remote code execution if a user opens a specially crafted Visio file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 50 % | CWE-399 | Resource Management Errors |
| 50 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:5344 | |||
| Oval ID: | oval:org.mitre.oval:def:5344 | ||
| Title: | Microsoft Office Visio Memory Validation Vulnerability | ||
| Description: | Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a crafted .DXF file, aka "Visio Memory Validation Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-1090 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Office Visio 2002 Microsoft Office Visio 2003 Microsoft Office Visio 2007 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:5496 | |||
| Oval ID: | oval:org.mitre.oval:def:5496 | ||
| Title: | Microsoft Office Visio Object Header Vulnerability | ||
| Description: | Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a Visio file containing crafted object header data, aka "Visio Object Header Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2008-1089 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Office Visio 2002 Microsoft Office Visio 2003 Microsoft Office Visio 2007 |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 5 | |
| Application | 5 |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 44170 | Microsoft Visio DXF File Handling Memory Validation Arbitrary Code Execution |
| 44169 | Microsoft Visio Object Header Data Handling Arbitrary Code Execution |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2008-04-10 | IAVM : 2008-T-0012 - Microsoft Visio Remote Code Execution Vulnerabilities Severity : Category II - VMSKEY : V0015942 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Office Visio DXF file invalid memory allocation exploit attempt RuleID : 28440 - Revision : 2 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Visio Object Header Buffer Overflow attempt RuleID : 15163 - Revision : 13 - Type : FILE-OFFICE |
| 2014-01-10 | Microsoft Office Visio DXF file invalid memory allocation exploit attempt RuleID : 13665 - Revision : 20 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2008-04-08 | Name : Arbitrary code can be executed on the remote host through Visio. File : smb_nt_ms08-019.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:45:56 |
|
| 2014-01-19 21:30:11 |
|
| 2013-11-11 12:41:07 |
|
| 2013-05-11 00:49:18 |
|
