 |
|
Microsoft Security Bulletin MS08-019 – Important
| ID: 155 |
|
| Protected since: 4/28/2008 |
|
| File version: 0009_0013_00 |
|
| Overview: MS Visio is vulnerable to a buffer overflow attack (MS08-019, CVE-2008-1090). |
Critical:  |
| Alias | |
| Affected Systems | MS Visio for:
Windows NT
Windows 2000
Windows Server 2003
Windows XP
Windows Vista |
| Severity | 3 |
| Details | Buffer overflow vulnerabilities occur due to programming errors within input validation routines or their absence. Such vulnerabilities can be exploited by diverting the affected application's path of execution to execute arbitrary code. If exploited successfully, this vulnerability could result in a compromise of the affected system, which in turn could be used as a standing-ground for further attacking internal resources.<br><br><br>This buffer overflow can occur by opening a malicious DXF file<br> <br>In addition, exploitation attempts of a buffer overflow may cause termination of the attacked service resulting in a potential denial of service to the <br>Visio session. |
| Impact | Arbitrary Code Execution
Denial of Service
Full system compromise
|
| Attack Vector | TCP port 80 - Hypertext Transfer Protocol (HTTP) |
| Recommended Solution | Recommended Solutions
In order to protect against this vulnerability the following steps should be taken:
- Update your Radware device with the latest signature file (See the supported products list below).
- Ensure that the above mentioned signature group exists in the active protection profile.
- To fix the vulnerability follow the instructions provided by the vendor.
http://www.microsoft.com/technet/security/bulletin/MS08-019.mspx |
| Associated Radware attacks | HTTP-Reply-MS-Comp-Visio-Dwld, HTTP-Reply-Visio-DXF-CE |
|
|
|
|
|