MS13-044 - Important : Vulnerability in Microsoft Visio Could Allow Information Disclosure...


Extraordinary Robot
Severity Rating: Important
Revision Note: V1.1 (May 23, 2013): Revised bulletin to announce a detection change for the Microsoft Visio 2010 (2810068) update. This is a detection change only. There were no changes to the update files. Customers who have successfully installed the update do not need to take any action.
Summary: This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow information disclosure if a user opens a specially crafted Visio file. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to produce information that could be used to try to further compromise an affected system.

Continue reading...