MS12-019 - Moderate : Vulnerability in DirectWrite Could Allow Denial of Service (2665364) - Version


Extraordinary Robot
News Feed
Severity Rating: Moderate
Revision Note: V1.0 (March 13, 2012): Bulletin published.
Summary: This security update resolves a publicly disclosed vulnerability in Windows DirectWrite. In an Instant Messenger-based attack scenario, the vulnerability could allow denial of service if an attacker sends a specially crafted sequence of Unicode characters directly to an Instant Messenger client. The target application could become unresponsive when DirectWrite renders the specially crafted sequence of Unicode characters.


This website is not affiliated, owned, or endorsed by Microsoft Corporation. It is a member of the Microsoft Partner Program.