Windows GDI Information Disclosure Vulnerability

Windows GDI Information Disclosure Vulnerability

CVE-2017-11852 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

Microsoft GDI Component in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to log on to an affected system and run a specially crafted application to compromise the user's system, due improperly disclosing kernel memory addresses, aka "Windows GDI Information Disclosure Vulnerability".

Learn more about our Cis Benchmark Audit For Server Software.