CVE-2017-8691 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Corporation Windows Kernel-mode Drivers

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources

Severity

8.8HIGHNVD

EPSS

41.6%

top 2.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Corporation Windows Kernel-mode Drivers Microsoft Windows Server 2008

Timeline

PublishedAug 8

Latest updateMay 13

Description

Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow an attacker to execute code remotely on a target system when the Windows font library fails to properly handle specially crafted embedded fonts, aka "Express Compressed Fonts Remote Code Execution Vulnerability."

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDmicrosoft/windowsr2

▶CVEListV5microsoft_corporation/windows_kernel-mode_driversWindows Server 2008 SP2 and R2 SP1, and Windows 7 SP1

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-wwvx-xw8g-3vv3: Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow an attacker to execute code remotely on a target system when the Windows font library fail↗2022-05-13

▶

CVEList

CVE-2017-8691: Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow an attacker to execute code remotely on a target system when the Windows font library fail↗2017-08-08

▶

📋Vendor Advisories

Microsoft

Express Compressed Fonts Remote Code Execution Vulnerability↗2017-08-08

▶