7.4 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.489 Medium
EPSS
Percentile
97.5%
Integer underflow in Uniscribe in Microsoft Windows 7 SP1 and Windows Server 2008 R2 SP1 allows remote attackers to execute arbitrary code via a crafted font, aka “Windows Integer Underflow Vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
microsoft:windows_7 | microsoft windows 7 | eq | * |
microsoft:windows_server_2008 | microsoft windows server 2008 | eq | r2 |