Microsoft Office is an office software suite of products from Microsoft Corporation (USA). Microsoft Office Visio is vulnerable to remote code execution. The vulnerability is due to a boundary error in the processing of EMR_COMMENT_EMFPLUS records in EMF images. A remote attacker could exploit this vulnerability to create a specially crafted file and trick victims into opening it with affected software, triggering an out-of-bounds write and executing arbitrary code on the target system.