BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Microsoft Windows Graphics Rendering Engine Buffer Overflow

Disclosed December 15, 2010    Fully Patched

Vulnerability Description:

Microsoft Windows contains a buffer overflow vulnerability in the Windows Graphics Rendering Engine. Successful exploitation could allow execution of arbitrary code.

Vendors:

Microsoft

Vulnerable Software/Devices:

Windows XP, 2003, Vista, and 2008

Vulnerability Severity:

High

Exploit Availability:

N/A

BeyondTrust Prevention and Detection:

  • BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
    • Retina Audit 14093 - Microsoft Windows Shell Graphics Remote Code Execution (2483185) - XP
    • Retina Audit 14094 - Microsoft Windows Shell Graphics Remote Code Execution (2483185) - XP x64/2003
    • Retina Audit 14095 - Microsoft Windows Shell Graphics Remote Code Execution (2483185) - Vista/2008

Mitigation:

Apply appropriate patch from MS11-006.

Links:

CVE(s):

None

Leave a Reply