MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information...

Discussion in 'Security Alerts' started by News, Dec 9, 2014.

  1. News

    News Extraordinary Robot
    News Feed

    Joined:
    Jun 27, 2006
    Messages:
    26,216
    Likes Received:
    20
    Severity Rating: Important
    Revision Note: V1.0 (December 9, 2014): Bulletin published.
    Summary: This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if a user browses to a website containing specially crafted JPEG content. An attacker could use this information disclosure vulnerability to gain information about the system that could then be combined with other attacks to compromise the system. The information disclosure vulnerability by itself does not allow arbitrary code execution. However, an attacker could use this information disclosure vulnerability in conjunction with another vulnerability to bypass security features such as Address Space Layout Randomization (ASLR).

    Continue reading...
     

Share This Page

Loading...