Express Compressed Fonts Remote Code Execution Vulnerability for the express compressed fonts remote code execution vulnerability in Windows Server 2008 (KB4035056)
Risk Information
Base Score
5.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
41.644%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
22903
Patch Description
Security Update for Windows Server 2008 (KB4035056)
References
http://www.securityfocus.com/bid/100090
http://www.securitytracker.com/id/1039096
https://fortiguard.com/zeroday/FG-VD-17-142
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-8691