CyberSec.Space Logo
Back to CVE Browser

CVE-2012-1888

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0780%
EPSS Percentile6.78th
PublishedAug 15, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

Buffer overflow in Microsoft Visio 2010 SP1 and Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file, aka "Visio DXF File Format Buffer Overflow Vulnerability."

Affected Platforms (CPE)

πŸ“¦
Microsoft

Visio

= 2010
πŸ“¦
Microsoft

Visio

= 2010
πŸ“¦
Microsoft

Visio Viewer

= 2010
πŸ“¦
Microsoft

Visio Viewer

= 2010

References & Advisories

πŸ”— http://www.us-cert.gov/cas/techalerts/TA12-227A.html
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-059
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15811
πŸ”— http://www.us-cert.gov/cas/techalerts/TA12-227A.html
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-059
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15811

Related Vulnerabilities

CVE-2000-120910.0

The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engi...

CVE-2007-09349.3

Unspecified vulnerability in Microsoft Visio 2002 allows remote user-assisted attackers to execute arbitrary code via a Visio (.VS...

CVE-2006-55749.3

Unspecified vulnerability in the Brazilian Portuguese Grammar Checker in Microsoft Office 2003 and the Multilingual Interface for ...

CVE-2007-09369.3

Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow remote user-assisted attackers to execute arbitrary code via a ...