CVE-2009-0095 Information

Description

Microsoft Office Visio 2002 SP2 2003 SP3 and 2007 SP1 does not properly validate object data in Visio files which allows remote attackers to execute arbitrary code via a crafted file aka \Memory Validation Vulnerability.\

Reference

http://www.us-cert.gov/cas/techalerts/TA09-041A.html http://www.vupen.com/english/advisories/2009/0391 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-005 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6179