CVE-2011-3400

Microsoft Windows XP <SP2-SP3 & Server 2003 <SP2 - RCE

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2011-3400. PoCs published by Metasploit, Luigi Auriemma, juan vazquez, including Metasploit module exploits/windows/browser/ms11_093_ole32.

AI-analyzed exploit summary This Metasploit module exploits a type confusion vulnerability in the OLE32 component of Windows XP SP3 (CVE-2011-3400) via a crafted Visio document. It achieves remote code execution through Internet Explorer when Visio Viewer is installed.

Description

Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 do not properly handle OLE objects in memory, which allows remote attackers to execute arbitrary code via a crafted object in a file, aka "OLE Property Vulnerability."

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/19002

View Code ZIP pw:eip

This Metasploit module exploits a type confusion vulnerability in the OLE32 component of Windows XP SP3 (CVE-2011-3400) via a crafted Visio document. It achieves remote code execution through Internet Explorer when Visio Viewer is installed.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows XP SP3 with Visio Viewer 2010 and Internet Explorer 6 or 7

No auth needed

Prerequisites: Victim must visit a malicious web page · Visio Viewer 2010 installed · Windows XP SP3 with IE 6 or 7

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC NORMAL

by Luigi Auriemma, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/ms11_093_ole32.rb