Signature Detail

Short Name	HTTP:STC:DL:VISIO-OBJ-HEADER
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Microsoft Visio Object Header Buffer Overflow
Release Date	2010/09/30
Update Number	1783
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Visio Object Header Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Microsoft Visio. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.

Extended Description

Microsoft Visio is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied data. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Failed exploit attempts will result in a denial-of-service condition.

Affected Products

Microsoft Visio 2002 SP2
Microsoft Visio 2003 SP2
Microsoft Visio 2003 SP3
Microsoft Visio 2007 SP1
Microsoft Visio 2007

References

BugTraq: 28555
CVE: CVE-2008-1089

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Microsoft Visio Object Header Buffer Overflow

Extended Description

Affected Products

References