This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2015-08-14
Product Visio Last view 2015-08-14
Version 2013 Type Application
Update sp1  
Edition *  
Language *  
Sofware Edition rt  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:microsoft:visio

Activity : Overall

Related : CVE

  Date Alert Description
4.3 2015-08-14 CVE-2015-2423

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Windows 10, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Visio 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Visio 2013 RT SP1, Word 2013 RT SP1, and Internet Explorer 7 through 11 allow remote attackers to gain privileges and obtain sensitive information via a crafted command-line parameter to an Office application or Notepad, as demonstrated by a transition from Low Integrity to Medium Integrity, aka "Unsafe Command Line Parameter Passing Vulnerability."

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-200 Information Exposure

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0188 Cumulative Security Update for Microsoft Internet Explorer (MS15-079)
Severity: Category I - VMSKEY: V0061297
2015-A-0194 Multiple Vulnerabilities in Microsoft Office (MS15-081)
Severity: Category II - VMSKEY: V0061307
2015-A-0197 Microsoft Command Line Parameter Information Disclosure Vulnerability (MS15-088)
Severity: Category II - VMSKEY: V0061313

Snort® IPS/IDS

Date Description
2015-09-10 Microsoft Windows Notepad remote printer file access attempt
RuleID : 35488 - Type : OS-WINDOWS - Revision : 4
2015-09-10 Microsoft Windows Notepad remote printer file access attempt
RuleID : 35487 - Type : OS-WINDOWS - Revision : 4

Nessus® Vulnerability Scanner

id Description
2015-08-12 Name: The remote Windows host is affected by multiple remote code execution vulnera...
File: smb_nt_ms15-081.nasl - Type: ACT_GATHER_INFO
2015-08-11 Name: The remote host has a web browser installed that is affected by multiple vuln...
File: smb_nt_ms15-079.nasl - Type: ACT_GATHER_INFO
2015-08-11 Name: The remote Windows host is affected by an information disclosure vulnerability.
File: smb_nt_ms15-088.nasl - Type: ACT_GATHER_INFO