MS12-075: Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2761226)
High Nessus Plugin ID 62907
SynopsisThe remote Windows host is affected by remote code execution vulnerabilities.
DescriptionThe remote Windows host is affected by the following remote code execution vulnerabilities:
- Two use-after-free vulnerabilities exist within Windows kernel-mode drivers. (CVE-2012-2530, CVE-2012-2553)
- A TrueType Font Parsing vulnerability exists due to the way TrueType font files are handled. (CVE-2012-2897)
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, 2008, 7, 2008 R2, 8, and 2012.