Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0156

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-0156
Last Modified 13 Aug 2012 11:33:24
Published 13 Mar 2012 05:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0156

Summary

DirectWrite in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly render Unicode characters, which allows remote attackers to cause a denial of service (application hang) via a (1) instant message or (2) web site, aka "DirectWrite Application Denial of Service Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 7

  • Microsoft Windows Server 2008

  • Microsoft Windows Server 2008 R2

  • Microsoft Windows Vista


References

MS - MS12-019

Related Patches

MS12-019 Security Update for Windows 7 (KB2665364)

MS12-019 Security Update for Windows Server 2008 x64 (KB2665364)

MS12-019 Security Update for Windows Server 2008 (KB2665364)

MS12-019 Security Update for Windows Vista (KB2665364)

MS12-019 Security Update for Windows Server 2008 R2 x64 (KB2665364)

MS12-019 Security Update for Windows Vista for x64 (KB2665364)

MS12-019 Security Update for Windows 7 for x64 (KB2665364)


Last Updated: 27 May 2016 10:58:22