Check: 2013-A-0164
windows 7 iavm:
2013-A-0164
(in version v1 r32)
Title
Microsoft Windows Unicode Scripts Processor Remote Code Execution Vulnerability (Cat II impact)
Discussion
Microsoft has released a security bulletin addressing a vulnerability in the Unicode Scripts Processor included in Microsoft Windows. The Unicode Script Processor, also known as Uniscribe, is a collection of APIs that enables a text layout client to format complex scripts. To exploit this vulnerability, an attacker would entice a user to visit a malicious or compromised web site or open a malicious attachment delivered via email. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code resulting in the compromise of affected systems.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-40037
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |