Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote attackers to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE-2010-0254 and CVE-2010-0256.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Visio VISIODWG.DLL库缓冲区溢出漏洞
Vulnerability Description
Microsoft Visio是美国微软(Microsoft)公司发布的一款Office套件中用于绘制流程图的软件。 Microsoft Office Visio的VISIODWG.DLL存在缓冲区溢出漏洞,起因是在该库的74ef偏移处执行了不安全的strcpy调用。在将DXF文件注入到Visio文档中时(通过拖放操作或从菜单栏中选择"注入 -> CAD绘图")会加载有漏洞的函数库。用户辅助的远程攻击者可通过特制的DXF文件执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A