MS11-041: Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2525694)
High Nessus Plugin ID 55121
SynopsisThe remote Windows kernel is affected by a remote code execution vulnerability.
DescriptionThe remote host is running a version of the Windows kernel that is affected by a remote code execution vulnerability. An attacker can exploit this by causing a user to visit a network share containing a specially crafted OpenType font (OTF). The attacker can exploit this issue to execute arbitrary code in kernel mode and take complete control of the affected system.
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, 2008, 7, and 2008 R2.