6.6 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.2 Low
EPSS
Percentile
96.2%
Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (reboot) via a crafted TrueType font file, aka “TrueType Font Parsing Vulnerability,” a different vulnerability than CVE-2011-3402.
CPE | Name | Operator | Version |
---|---|---|---|
windows_7 | eq | sp1x86 | |
windows_7 | eq | sp1x64 | |
windows_server_2008 | eq | r2 itanium | |
windows_server_2008 | eq | r2 x64 |