Download
| Alert*
oval:org.secpod.oval:def:10990
Microsoft Office Visio 2007 Service Pack 3 is installed oval:org.secpod.oval:def:10987 The host is installed with Microsoft Visio 2003, 2007 or 2010 and is prone to information disclosure vulnerability. A flaw is present in the application, which fails to properly handle XML external entities that are resolved within other XML external entity declarations. Successful exploitation allo ... oval:org.secpod.oval:def:10988 The host is missing an important security update according to Microsoft bulletin, MS13-044. The update is required to fix information disclosure vulnerability. A flaw is present in the application, which fails to properly handle XML external entities that are resolved within other XML external entit ... oval:org.secpod.oval:def:1570 The host is missing a critical security update according to Microsoft security bulletin, MS10-028. The update is required to fix remote code execution vulnerabilities. Flaws are present in Microsoft Office Visio, which fails to validate attributes and index calculation of a specially crafted Visio f ... oval:org.secpod.oval:def:1033 The host is missing an Important security update according to Microsoft security bulletin, MS11-008. The update is required to fix remote code execution vulnerability in Microsoft Visio. The flaws are present in the application, which fails to validate objects in memory and fail to parse certain str ... oval:org.secpod.oval:def:1750 The host is installed with Microsoft Visio 2010 or Microsoft Visio 2003 or Microsoft Visio 2007 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to parse certain structures when handling specially crafted Visio files. Successful exploitation will ... oval:org.secpod.oval:def:1753 The host is missing an important security update according to Microsoft security bulletin, MS11-060. The update is require to fix a remote code execution vulnerability. The flaws are ipresent in the application, which fails to parse certain structures when handling specially crafted Visio files. Suc ... oval:org.secpod.oval:def:1752 The host is missing an important security update according to Microsoft security bulletin, MS11-060. The update is required to fix a remote code execution vulnerability. The flaw is present in the application, which fails to parse certain structures when handling specially crafted Visio files. Succe ... oval:org.secpod.oval:def:3187 The host is missing a critical security update according to Microsoft security bulletin, MS10-036. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office, which fails to validate COM objects to be instantiated. Successful exploitation allows an a ... oval:org.secpod.oval:def:2662 The host is missing an important security update according to Microsoft security bulletin, MS08-019. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Visio, which fails to handle a specially crafted Visio file. Successful exploitation allows an ... oval:org.mitre.oval:def:6172 Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly perform memory copy operations for object data, which allows remote attackers to execute arbitrary code via a crafted Visio document, aka "Memory Corruption Vulnerability." oval:org.mitre.oval:def:5496 Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a Visio file containing crafted object header data, aka "Visio Object Header Vulnerability." oval:org.secpod.oval:def:87 The host is installed with Microsoft Visio 2002, Microsoft Visio 2003, and Microsoft Visio 2007 and is prone to data-type memory corruption vulnerability. A flaw is present in the application, which fails to parse certain structures when handling specially crafted Visio files. Successful exploitatio ... oval:org.secpod.oval:def:86 The host is installed with Microsoft Visio 2002, Microsoft Visio 2003, or Microsoft Visio 2007 and is prone to object memory corruption vulnerability. A flaw is present in the application, which fails to validate objects in memory when parsing specially crafted Visio files. Successful exploitation w ... oval:org.secpod.oval:def:2352 The host is missing an important security update according to Microsoft security bulletin, MS09-005. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Visio, which fails to handle a specially crafted Visio file. Successful exploitation ... oval:org.mitre.oval:def:6819 Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Visio Attribute Validation Memory Corruption Vulnerability." oval:org.mitre.oval:def:6179 Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 does not properly validate object data in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Memory Validation Vulnerability." oval:org.secpod.oval:def:30008 The host is installed with Microsoft Visio 2007 or 2010 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle objects in memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.mitre.oval:def:5344 Unspecified vulnerability in Microsoft Visio 2002 SP2, 2003 SP2 and SP3, and 2007 up to SP1 allows user-assisted remote attackers to execute arbitrary code via a crafted .DXF file, aka "Visio Memory Validation Vulnerability." oval:org.mitre.oval:def:5261 The application Microsoft Office Visio Professional 2007 or Microsoft Office Visio Standard 2007 is installed. oval:org.mitre.oval:def:6732 Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly calculate unspecified indexes associated with Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Visio Index Calculation Memory Corruption Vulnerability." oval:org.secpod.oval:def:30006 The host is missing an important security update according to Microsoft security bulletin, MS15-110. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted Microsoft Office file. Successful exploi ... oval:org.secpod.oval:def:35630 The host is missing a critical security update according to Microsoft security bulletin, MS16-070. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to properly handle objects in memory. Successful exploitation could allow to execute arbitr ... oval:org.secpod.oval:def:35636 The host is installed with Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, or Visio Viewer 2010 and is prone to a Microsoft Office OLE DLL side loading vulnerability. A flaw is present in the applications, which fails to properly handle library loading. S ... oval:org.secpod.oval:def:32603 The host is installed with Microsoft Office 2007, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Office 2013, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Office 2016, Excel 2016, PowerPoint ... oval:org.secpod.oval:def:32607 The host is missing a critical security update according to Microsoft security bulletin, MS16-004. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted Microsoft Office file. Successful exploit ... oval:org.secpod.oval:def:31365 The host is missing an important security update according to Microsoft security bulletin, MS15-116. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted Microsoft Office file. Successful explo ... oval:org.secpod.oval:def:31390 The host is installed with Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2007 IME (Japanese) SP3, Access 2010 SP2, Excel 2010 SP2, InfoPath 2010 SP2, OneNote 2010 SP2, P ... oval:org.mitre.oval:def:7286 Windows Shell and WordPad in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7; Microsoft Office XP SP3; Office 2003 SP3; and Office System 2007 SP1 and SP2 do not properly validate COM objects during instantiat ... |