Lucene search
HistoryDec 11, 2013 - 12:55 a.m.
CVE-2013-3903
cve-2013-3903
array index error
win32k.sys
microsoft windows
denial of service
truetype font parsing vulnerability
nvd
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.4%
Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to cause a denial of service (reboot) via a crafted TrueType font (TTF) file, aka “TrueType Font Parsing Vulnerability.”
Affected configurations
Node
microsoftwindows_8Match--x64
ORmicrosoftwindows_8Match--x86
ORmicrosoftwindows_rtMatch-
ORmicrosoftwindows_rt_8.1Match-
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2datacenter
ORmicrosoftwindows_server_2012Matchr2essentials
ORmicrosoftwindows_server_2012Matchr2standard
Related
nvd
nvd
CVE-2013-3903
2013-12-11 00:55:03
symantec
symantec
Microsoft Windows 'Win32k.sys' CVE-2013-3903 Denial Of Serivce Vulnerability
2013-12-10 00:00:00
prion
prion
Spoofing
2013-12-11 00:55:00
cvelist
cvelist
CVE-2013-3903
2013-12-11 00:00:00
nessus
nessus
openvas
openvas
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2013-12-30 00:00:00
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.4%
Related for CVE-2013-3903