DirectWrite Unicode Rendering Denial of Service Vulnerability

DirectWrite Unicode Rendering Denial of Service Vulnerability

CVE-2012-0156 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

DirectWrite in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly render Unicode characters, which allows remote attackers to cause a denial of service (application hang) via a (1) instant message or (2) web site, aka "DirectWrite Application Denial of Service Vulnerability."

Learn more about our Web App Pen Testing.