890
VMScore

CVE-2012-2897

Published: 26/09/2012 Updated: 28/09/2020
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT, as used by Google Chrome prior to 22.0.1229.79 and other programs, do not properly handle objects in memory, which allows remote malicious users to execute arbitrary code via a crafted TrueType font file, aka "Windows Font Parsing Vulnerability" or "TrueType Font Parsing Vulnerability."

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

google chrome 22.0.1229.67

google chrome 22.0.1229.58

google chrome 22.0.1229.18

google chrome 22.0.1229.20

google chrome 22.0.1229.16

google chrome 22.0.1229.28

google chrome 22.0.1229.25

google chrome 22.0.1229.37

google chrome 22.0.1229.36

google chrome 22.0.1229.54

google chrome 22.0.1229.53

google chrome 22.0.1229.52

google chrome 22.0.1229.6

google chrome 22.0.1229.2

google chrome

google chrome 22.0.1229.63

google chrome 22.0.1229.62

google chrome 22.0.1229.76

google chrome 22.0.1229.14

google chrome 22.0.1229.29

google chrome 22.0.1229.24

google chrome 22.0.1229.49

google chrome 22.0.1229.59

google chrome 22.0.1229.60

google chrome 22.0.1229.17

google chrome 22.0.1229.12

google chrome 22.0.1229.26

google chrome 22.0.1229.23

google chrome 22.0.1229.35

google chrome 22.0.1229.33

google chrome 22.0.1229.51

google chrome 22.0.1229.50

google chrome 22.0.1229.3

google chrome 22.0.1229.0

google chrome 22.0.1229.32

google chrome 22.0.1229.57

google chrome 22.0.1229.9

google chrome 22.0.1229.7

google chrome 22.0.1229.1

google chrome 22.0.1229.11

google chrome 22.0.1229.64

google chrome 22.0.1229.65

google chrome 22.0.1229.21

google chrome 22.0.1229.22

google chrome 22.0.1229.31

google chrome 22.0.1229.27

google chrome 22.0.1229.48

google chrome 22.0.1229.39

google chrome 22.0.1229.56

google chrome 22.0.1229.55

google chrome 22.0.1229.8

google chrome 22.0.1229.4

google chrome 22.0.1229.10

microsoft windows_xp

microsoft windows_xp -

microsoft windows_server_2008 -

microsoft windows_7 -

microsoft windows_8 -

microsoft windows_server_2003

microsoft windows_server_2012 -

microsoft windows_vista -

microsoft windows_server_2008

microsoft windows_rt -

microsoft windows_vista

Recent Articles

Microsoft Updates November 2012 – IE, Kernel+Shell, and .NET Critical Patches
Securelist • Kurt Baumgartner • 13 Nov 2012

Microsoft is patching a fair number of vulnerabilities in their software with 19 flaws being fixed. All of them are being updated in six Bulletins this month (MS12-071 through MS12-076). Four of the Bulletins are rated critical with only two of them being rated urgent for immediate deployment by larger customers concerned with compatibility and performance. At the same time, Internet Explorer 10 is not vulnerable to exploitation by the related set of three flaws, and newly released Windows 8 is ...