CVE-2017-11852

Summary

Microsoft GDI Component in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to log on to an affected system and run a specially crafted application to compromise the user's system, due improperly disclosing kernel memory addresses, aka "Windows GDI Information Disclosure Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationGDIWindows 7 SP1 and Windows Server 2008 SP2 and R2 SP1.affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References