Microsoft Windows Win32k Kernel-Mode Driver Multiple Vulnerabilities
SECUNIA ADVISORY ID: SA37318
VERIFY ADVISORY: http://secunia.com/advisories/37318/
DESCRIPTION: Some vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to compromise a user’s system.
1) An unspecified error in the Win32k kernel-mode driver (Win32k.sys) when parsing font code can be exploited to execute arbitrary code if a user views content rendered in a specially crafted Embedded OpenType (EOT) font, e.g. when a user visits a malicious web site.
2) Some vulnerabilities in the Win32k kernel-mode driver can be exploited by malicious, local users to gain escalated privileges.
For more information: SA37309
SOLUTION: Apply patches.
Microsoft Windows 2000 SP4: http://www.microsoft.com/downloads/details.aspx?familyid=45db8bb1-c81b-4d3f-a658-74f5fa445f81
Windows XP SP2 / SP3: http://www.microsoft.com/downloads/details.aspx?familyid=916abdad-44b7-4f9d-986a-0c3558fb8e06
Windows XP Professional x64 Edition SP2: http://www.microsoft.com/downloads/details.aspx?familyid=1d0464c6-5ed8-4064-887e-618a2db09236
Windows Server 2003 SP2: http://www.microsoft.com/downloads/details.aspx?familyid=5cd62750-e269-44ae-8c7c-c335e8545b9a
Windows Server 2003 x64 Edition SP2: http://www.microsoft.com/downloads/details.aspx?familyid=04a7f817-f330-4003-8b25-d3e744905b12
Windows Server 2003 with SP2 for Itanium-based Systems: http://www.microsoft.com/downloads/details.aspx?familyid=b95daac0-4c99-47a4-b0ca-9429997ea3d9
PROVIDED AND/OR DISCOVERED BY: 1) The vendor credits Tavis Ormandy of Google Inc.
ORIGINAL ADVISORY: MS09-065 (KB969947): http://www.microsoft.com/technet/security/Bulletin/MS09-065.mspx
OTHER REFERENCES: SA37309: http://secunia.com/advisories/37309/
———————————————————————-