CVE-2013-3903

Description

Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to cause a denial of service (reboot) via a crafted TrueType font (TTF) file, aka "TrueType Font Parsing Vulnerability."

Related CPE's

omicrosoftwindows_rt-*******

omicrosoftwindows_8--x86*****

omicrosoftwindows_rt_8.1-*******

omicrosoftwindows_8--x64*****

omicrosoftwindows_server_2012-*******

omicrosoftwindows_server_2012r2***datacenter***

omicrosoftwindows_server_2012r2***essentials***

omicrosoftwindows_server_2012r2***standard***

References

MS13-101

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:L/AC:M/Au:N/C:N/I:N/A:C

AccessVector

LOCAL

AccessComplexity

MEDIUM

Authentication

NONE

ConfidentialityImpact

NONE

IntegrityImpact

NONE

AvailabilityImpact

COMPLETE

BaseScore

4.699999809265137

Created by Yello
About Severity.io