Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-2004
HistoryNov 08, 2011 - 9:55 p.m.

CVE-2011-2004

2011-11-0821:55:01
CWE-20
[email protected]
web.nvd.nist.gov
1

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.2

Confidence

Low

EPSS

0.968

Percentile

99.7%

JSON

Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (reboot) via a crafted TrueType font file, aka “TrueType Font Parsing Vulnerability,” a different vulnerability than CVE-2011-3402.

Affected configurations

NVD
Node
microsoftwindows_7Match-
OR
microsoftwindows_7Match-sp1x64
OR
microsoftwindows_7Match-sp1x86
OR
microsoftwindows_server_2008Matchr2itanium
OR
microsoftwindows_server_2008Matchr2x64

Related

cvelist 2
cve 2
prion 2
threatpost 5
openvas 12
checkpoint_advisories 2
nvd 1
cert 2
thn 1
nessus 6
metasploit 1
mskb 3
kaspersky 1
securityvulns 4
symantec 1
seebug 1
cvelist
cvelist
CVE-2011-2004
2011-11-08 21:00:00
CVE-2011-3402
2011-11-04 21:00:00
cve
cve
CVE-2011-2004
2011-11-08 21:55:01
CVE-2011-3402
2011-11-04 21:55:04
prion
prion
Spoofing
2011-11-08 21:55:00
Design/Logic Flaw
2011-11-04 21:55:00
threatpost
threatpost
Stars Attack on Iran Was Early Version of Duqu
2011-11-05 21:08:37
TrueType Font Exploits Gateway to Kernel Attacks
2013-07-11 14:10:56
Anatomy of the Duqu Attacks
2011-11-21 15:51:38
openvas
openvas
Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)
2011-12-14 00:00:00
Microsoft Windows TrueType Font Parsing Privilege Elevation Vulnerability
2011-11-07 00:00:00
Windows Kernel-Mode Drivers Remote Code Execution Vulnerabilities (2567053)
2011-12-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows TrueType Font File Parsing Code Execution (CVE-2011-3402)
2011-11-06 00:00:00
Microsoft Windows TrueType Font File Parsing Code Execution - Ver2 (CVE-2011-3402)
2015-05-18 00:00:00
nvd
nvd
CVE-2011-3402
2011-11-04 21:55:04
cert
cert
Microsoft Windows TrueType font parsing vulnerability
2011-11-04 00:00:00
Microsoft Windows TrueType font array indexing vulnerability
2011-11-08 00:00:00
thn
thn
Duqu malware was created to spy on Iran's nuclear program
2011-11-06 06:24:00
nessus
nessus
MS KB2639658: Vulnerability in TrueType Font Parsing Could Allow Elevation of Privilege (DEPRECATED)
2011-11-04 00:00:00
MS11-087: Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2639417)
2011-12-13 00:00:00
MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight (2681578) (Mac OS X)
2012-05-09 00:00:00
metasploit
metasploit
Windows Gather Forensics Duqu Registry Check
2011-11-10 21:20:48
mskb
mskb
MS11-087: Vulnerability in Windows kernel-mode drivers could allow remote code execution: December 13, 2011
2017-01-07 00:00:00
MS11-084: Vulnerability in Windows kernel-mode drivers could allow denial of service: November 8, 2011
2011-11-08 00:00:00
MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight: May 8, 2012
2012-05-08 00:00:00
kaspersky
kaspersky
KLA10544 Code execution vulnerabilities in Microsoft Silverlight
2012-05-08 00:00:00
securityvulns
securityvulns
Microsoft Windows DoS
2011-11-09 00:00:00
Mictosoft Lync multiple security vulnerabilities
2012-06-13 00:00:00
Microsoft Windows multiple security vulnerabilities
2011-12-26 00:00:00
symantec
symantec
Microsoft Windows Kernel TrueType Font Parsing (CVE-2011-2004) Denial of Service Vulnerability
2011-11-08 00:00:00
seebug
seebug
Microsoft Windows TrueType字体解析拒绝服务漏洞(MS11-084)
2011-11-09 00:00:00

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.2

Confidence

Low

EPSS

0.968

Percentile

99.7%

JSON
Related for NVD:CVE-2011-2004
cvelist2cve2prion2threatpost5openvas12checkpoint_advisories2nvd1cert2thn1nessus6metasploit1mskb3kaspersky1securityvulns4symantec1seebug1