CVE-2013-3903

Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to cause a denial of service (reboot) via a crafted TrueType font (TTF) file, aka "TrueType Font Parsing Vulnerability."
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_8:-:-:x64:*:*:*:*:*
cpe:2.3:o:microsoft:windows_8:-:-:x86:*:*:*:*:*
cpe:2.3:o:microsoft:windows_rt:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:datacenter:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:essentials:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:standard:*:*:*

History

21 Nov 2024, 01:54

Type Values Removed Values Added
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-101 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-101 -

Information

Published : 2013-12-11 00:55

Updated : 2024-11-21 01:54


NVD link : CVE-2013-3903

Mitre link : CVE-2013-3903

CVE.ORG link : CVE-2013-3903


JSON object : View

Products Affected

microsoft

  • windows_server_2012
  • windows_rt
  • windows_rt_8.1
  • windows_8
CWE
CWE-20

Improper Input Validation