Information Disclosure vulnerability in the kernel-mode driver in Microsoft Windows - CVE-2015-0076ID: oval:org.secpod.oval:def:23752 | Date: (C)2015-03-11 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Windows Vista SP2, Server 2008 SP2, Windows 7 SP1, Server 2008 R2 SP1, Windows 8, Windows 8.1, Server 2012 or Server 2012 R2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle uninitialized memory when parsing certain, specially crafted JPEG XR (.JXR) image format files. An attacker who successfully exploited this vulnerability could potentially read data that was not intended to be disclosed.
Platform: |
Microsoft Windows Vista |
Microsoft Windows Server 2008 |
Microsoft Windows 7 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |