Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - SANS Internet Storm Center InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Canonical Display Driver Vulnerability

Published: 2010-05-18
Last Updated: 2010-05-18 22:26:52 UTC
by Johannes Ullrich (Version: 1)
1 comment(s)

Microsoft released a security advisory [1] with details about a so far unpatched vulnerability in the canonical display driver. All system with the "Aero" theme enabled are vulnerable.

Theoretically, code execution is possible, but according to Microsoft unlikely. However, the vulnerability would allow a DoS attack by crashing the system. The quick fix for the problem is to turn off aero.



Johannes B. Ullrich, Ph.D.
SANS Technology Institute

Keywords: aero microsoft
1 comment(s)
Diary Archives