Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0096

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0096
Last Modified 07 Mar 2011 10:17:53
Published 10 Feb 2009 05:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0096

Summary

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operations for object data, which allows remote attackers to execute arbitrary code via a crafted Visio document, aka "Memory Corruption Vulnerability."

Vulnerable Systems

Application

  • Microsoft Visio 2002

  • Microsoft Visio 2003

  • Microsoft Visio 2007


References

CERT - TA09-041A

VUPEN - ADV-2009-0391

MS - MS09-005


Last Updated: 27 May 2016 10:50:06