Microsoft GDI Component in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to log on to an affected system and run a specially crafted application to compromise the userâs system, due improperly disclosing kernel memory addresses, aka âWindows GDI Information Disclosure Vulnerabilityâ.
[
{
"product": "GDI",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1."
}
]
}
]