MS11-008: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (2451879)
High Nessus Plugin ID 51908
Arbitrary code can be executed on the remote Windows host through Visio.
The remote host contains a version of Microsoft Visio that is affected by multiple memory corruption vulnerabilities. A remote attacker could exploit these by tricking a user into opening a specially crafted Visio file, resulting in arbitrary code execution.
Microsoft has released a set of patches for Visio 2002, 2003, and 2007.