Test ID:	1.3.6.1.4.1.25623.1.0.902485
Category:	Windows : Microsoft Bulletins
Title:	Windows Kernel-Mode Drivers Remote Code Execution Vulnerability (2617657)
Summary:	This host has moderate security update missing according to; Microsoft Bulletin MS11-084.
Description:	Summary: This host has moderate security update missing according to Microsoft Bulletin MS11-084. Vulnerability Insight: The flaw is due to an array-indexing error in 'Win32k.sys' when parsing TrueType font files, which can be exploited by attackers to cause a denial of service. Vulnerability Impact: Successful exploitation could allow local attackers to gain elevated privileges or to run arbitrary code in kernel mode and take complete control of an affected system. An attacker could then install programs view, change, or delete data or create new accounts with full administrative rights. Affected Software/OS: Microsoft Windows 7 Service Pack 1 and prior. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.1 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2004 CERT/CC vulnerability note: VU#675073 http://www.kb.cert.org/vuls/id/675073 Microsoft Security Bulletin: MS11-084 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-084 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14133
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.