vendor:
Windows
by:
Project Zero
7.5
CVSS
HIGH
Information Disclosure
200
CWE
Product Name: Windows
Affected Version From: Windows 7 32-bit
Affected Version To: Windows 7 32-bit
Patch Exists: NO
Related CWE:
CPE: o:microsoft:windows:7
Platforms Tested: Windows 7 32-bit
Unknown
win32k!NtGdiMakeFontDir Information Disclosure
The win32k!NtGdiMakeFontDir system call discloses large portions of uninitialized kernel stack memory to user-mode clients. The proof of concept code fills the kernel stack with a controlled marker byte and then invokes the affected syscall to leak stack bytes to user-mode.
Mitigation:
No mitigation or remediation steps mentioned.