CVE-2018-0741

The Color Management Module (Icm32.dll) in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Microsoft Color Management Information Disclosure Vulnerability".

Published: Jan 4, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-0741
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 2.6
AV:N/AC:H/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_7	-	-
microsoft / windows_server_2008	r2-sp1	r2-sp1.x
microsoft / windows_server_2008	-	-

http://www.securityfocus.com/bid/102349
http://www.securitytracker.com/id/1040093
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0741

Vulnerability Database

289,697

CVE-2018-0741