Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:23181
HistoryNov 09, 2011 - 12:00 a.m.

Microsoft Windows TrueType字体解析拒绝服务漏洞(MS11-084)

2011-11-0900:00:00
Root
www.seebug.org
8

0.122 Low

EPSS

Percentile

94.8%

JSON

CVE ID: CVE-2011-2004

Microsoft Windows是流行的计算机操作系统。

Microsoft Windows在实现上存在安全漏洞,可被恶意用户利用造成拒绝服务。

此漏洞源于在解析TrueType字体文件时Win32k.sys中存在的数组索引错误,可通过诱使用户浏览包含特制TrueType字体文件的WebDAV或网络共享利用此漏洞。

Microsoft Windows Server 2008
Microsoft Windows 7
厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(ms11-084)以及相应补丁:

ms11-084:Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service (2617657)

链接:http://www.microsoft.com/technet/security/bulletin/ms11-084.mspx

Related

nessus 1
cert 1
openvas 2
symantec 1
mskb 1
securityvulns 1
cve 1
prion 1
nessus
nessus
MS11-084: Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service (2617657)
2011-11-08 00:00:00
cert
cert
Microsoft Windows TrueType font array indexing vulnerability
2011-11-08 00:00:00
openvas
openvas
Windows Kernel-Mode Drivers Remote Code Execution Vulnerability (2617657)
2011-11-09 00:00:00
Windows Kernel-Mode Drivers Remote Code Execution Vulnerability (2617657)
2011-11-09 00:00:00
symantec
symantec
Microsoft Windows Kernel TrueType Font Parsing (CVE-2011-2004) Denial of Service Vulnerability
2011-11-08 00:00:00
mskb
mskb
MS11-084: Vulnerability in Windows kernel-mode drivers could allow denial of service: November 8, 2011
2011-11-08 00:00:00
securityvulns
securityvulns
Microsoft Windows DoS
2011-11-09 00:00:00
cve
cve
CVE-2011-2004
2011-11-08 21:55:00
prion
prion
Spoofing
2011-11-08 21:55:00

0.122 Low

EPSS

Percentile

94.8%

JSON
Related for SSV:23181
nessus1cert1openvas2symantec1mskb1securityvulns1cve1prion1