Vulnerabilities > Microsoft > Visio Viewer
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-06-16 | CVE-2016-3235 | Permissions, Privileges, and Access Controls vulnerability in Microsoft Visio and Visio Viewer Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability." | 9.3 |
| 2013-03-13 | CVE-2013-0079 | Remote Code Execution vulnerability in Microsoft Office Filter Pack, Visio and Visio Viewer Microsoft Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file that triggers incorrect memory allocation, aka "Visio Viewer Tree Object Type Confusion Vulnerability." | 9.3 |
| 2012-08-15 | CVE-2012-1888 | Buffer Errors vulnerability in Microsoft Visio and Visio Viewer Buffer overflow in Microsoft Visio 2010 SP1 and Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file, aka "Visio DXF File Format Buffer Overflow Vulnerability." | 9.3 |
| 2012-05-09 | CVE-2012-0018 | Improper Input Validation vulnerability in Microsoft Visio Viewer 2010 Microsoft Visio Viewer 2010 Gold and SP1 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "VSD File Format Memory Corruption Vulnerability." | 9.3 |
| 2012-02-14 | CVE-2012-0138 | Code Injection vulnerability in Microsoft Visio Viewer 2010 Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019, CVE-2012-0020, CVE-2012-0136, and CVE-2012-0137. | 9.3 |
| 2012-02-14 | CVE-2012-0137 | Code Injection vulnerability in Microsoft Visio Viewer 2010 Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019, CVE-2012-0020, CVE-2012-0136, and CVE-2012-0138. | 9.3 |
| 2012-02-14 | CVE-2012-0136 | Code Injection vulnerability in Microsoft Visio Viewer 2010 Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019, CVE-2012-0020, CVE-2012-0137, and CVE-2012-0138. | 9.3 |
| 2012-02-14 | CVE-2012-0020 | Code Injection vulnerability in Microsoft Visio Viewer 2010 Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0019, CVE-2012-0136, CVE-2012-0137, and CVE-2012-0138. | 9.3 |
| 2012-02-14 | CVE-2012-0019 | Code Injection vulnerability in Microsoft Visio Viewer 2010 Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka "VSD File Format Memory Corruption Vulnerability," a different vulnerability than CVE-2012-0020, CVE-2012-0136, CVE-2012-0137, and CVE-2012-0138. | 9.3 |