Check: 2014-B-0014
windows 7 iavm:
2014-B-0014
(in version v1 r32)
Title
Microsoft Windows Graphics Component Remote Code Execution Vulnerability (Cat I impact)
Discussion
Microsoft has released a security bulletin addressing a vulnerability in Microsoft Windows Direct2C. Direct2D is a hardware-accelerated, immediate-mode 2-D graphics API that provides high performance and high-quality rendering for 2-D geometry, bitmaps, and text. To exploit this vulnerability, an attacker would host a malicious website that is designed to invoke Direct2D through Internet Explorer. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code and compromise the affected system.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-44033
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |