=====================================================================
                                     CERT-Renater

                          Note d'Information No. 2007/VULN265
_____________________________________________________________________

DATE                      : 13/06/2007

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running Microsoft Visio.

======================================================================

MS07-030 - Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution
            (927051)

Affected Software:
     - Microsoft Visio 2002 Service Pack 2
     - Microsoft Visio 2003 Service Pack 2

Non-Affected Software:
     - Microsoft Viso 2007

Full MS07-030 advisory:
    http://www.microsoft.com/technet/security/bulletin/ms07-030.mspx


Vulnerability Details

Version Number Memory Corruption Vulnerability - CVE-2007-0934

     A remote code execution vulnerability exists in the way Microsoft Visio
     handles a specially crafted version number in a Visio (.VSD, VSS, or .VST)
     file. An attacker could exploit this vulnerability when Visio does not
     correctly validate the version number field when processing the contents
     of a file. Such a specially crafted file might be included as an e-mail
     attachment, or hosted on a malicious or compromised Web site.

Visio Document Packaging Vulnerability - CVE-2007-0936

     A remote code execution vulnerability exists in Microsoft Visio as a
     result of the way it incorrectly handles the parsing of packed objects
     within the Visio file format. An attacker could exploit this vulnerability
     by constructing a malicious Visio (.VSD, VSS, or .VST) file that could
     potentially allow remote code execution if a user visited a malicious Web
     site or opened a specially crafted Visio attachment included in an e-mail
     message. An attacker who successfully exploited this vulnerability could
     take complete control of an affected system.

======================================================================

            =========================================================
            Les serveurs de référence du CERT-Renater
            http://www.urec.fr/securite
            http://www.cru.fr/securite
            http://www.renater.fr
            =========================================================
            + CERT-RENATER          | tel : 01-53-94-20-44          +
            + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
            + 75013 Paris           | email: certsvp@renater.fr     +
            =========================================================