Microsoft Windows Kernel-Mode Drivers Multiple Vulnerabilities

Last Update Date: 12 Oct 2011 15:28 Release Date: 12 Oct 2011 4896 Views

RISK: High Risk

TYPE: Operating Systems - Windows OS

Win32k Null Pointer De-reference Vulnerability
An elevation of privilege vulnerability exists in the way that Windows kernel-mode drivers validate data supplied from user mode to kernel mode. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode and take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.
Win32k TrueType Font Type Translation Vulnerability
A denial of service vulnerability exists in implementations of Microsoft Windows when the system improperly processes a specially crafted TrueType font file. An attacker who successfully exploited this vulnerability could cause the affected system to stop responding.
Font Library File Buffer Overrun Vulnerability
A remote code execution vulnerability exists in the Windows kernel due to improper handling of a specially crafted .fon font file. The vulnerability could allow an attacker to run code in kernel-mode and then install programs; view, change, or delete data; or create new accounts with full administrative rights.
Win32k Use After Free Vulnerability
An elevation of privilege vulnerability exists due to the way that Windows Kernel-mode drivers manage kernel-mode driver objects. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.