Total vulnerabilities in the database
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate pointers during the parsing of OpenType (aka OTF) fonts, which allows remote attackers to execute arbitrary code via a crafted font file, aka "Win32k OTF Validation Vulnerability."
| Software | From | Fixed in |
|---|---|---|
| microsoft / windows_vista | - | - |
| microsoft / windows_server_2008 | r2 | r2.x |
| microsoft / windows_server_2008 | --sp2 | --sp2.x |
| microsoft / windows_xp | --sp2 | --sp2.x |
| microsoft / windows_server_2003 | - | - |
| microsoft / windows_7 | --sp1 | --sp1.x |
| microsoft / windows_server_2008 | - | - |