Oval Definition:oval:org.mitre.oval:def:6172
Revision Date:2013-02-11Version:4
Title:Memory Corruption Vulnerability
Description:Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operations for object data, which allows remote attackers to execute arbitrary code via a crafted Visio document, aka "Memory Corruption Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-0096
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Office Visio 2002
Microsoft Office Visio 2003
Microsoft Office Visio 2007
Definition Synopsis
  • AND
  • Microsoft Office Visio 2002 SP2 is installed
  • AND Vislib.dll version is less than 10.0.6885.4
  • OR
  • Microsoft Office Visio 2003 is installed
  • AND Vislib.dll version is less than 11.0.8223.0
  • OR
  • Microsoft Office Visio 2007 is installed
  • AND Vislib.dll version is less than 12.0.6336.5001
    • BACK