Update Protection against Microsoft Office Visio ELEMENTS.DLL Data Type Memory Corruption Vulnerability (MS11-008)
| Check Point Reference: | CPAI-2011-014 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Security Bulletin MS11-008 | |
| Industry Reference(s): | CVE-2011-0093 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Microsoft Visio 2002 Microsoft Visio 2003 Microsoft Visio 2007 | ||
| Vulnerability Description A remote code execution vulnerability has been identified in Microsoft Visio. Microsoft Visio is a diagram creation software for Microsoft Windows. A remote attacker can exploit this vulnerability via a specially crafted Visio file. Successful exploitation may allow execution of arbitrary code on a vulnerable system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS11-008 |
|
|
Vulnerability Details The vulnerability is due to insufficient validation when Microsoft Visio is processing certain attributes in Visio files. A remote attacker may exploit this issue by enticing a user to download and open a malicious file. Successful exploitation of this vulnerability may corrupt system memory, allowing execution of arbitrary code on a vulnerable system and may cause the application to terminate abnormally. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability via malformed Visio files.
In order for the protection to be activated, update your Security Gateway/VPN-1 product to the latest IPS/SmartDefense update. For information on how to update IPS/SmartDefense,go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.