CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3209

Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync 2013 SP1; Lync 2010; Lync 2010 Attendee; Live Meeting 2007 Console; .NET Framework 3.0 SP2, 3.5, 3.5.1, 4.5.2, and 4.6; and Silverlight 5 allows remote attackers to bypass the ASLR protection mechanism via unspecified vectors, aka "True Type Font Parsing Information Disclosure Vulnerability."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.179

EPSS Ranking 94.7%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 5.0

References

Products affected by CVE-2016-3209

Microsoft » .net Framework » Version: 3.0

cpe:2.3:a:microsoft:.net_framework:3.0
Microsoft » .net Framework » Version: 3.5

cpe:2.3:a:microsoft:.net_framework:3.5
Microsoft » .net Framework » Version: 3.5.1

cpe:2.3:a:microsoft:.net_framework:3.5.1
Microsoft » .net Framework » Version: 4.5.2

cpe:2.3:a:microsoft:.net_framework:4.5.2
Microsoft » .net Framework » Version: 4.6

cpe:2.3:a:microsoft:.net_framework:4.6
Microsoft » Live Meeting » Version: 2007

cpe:2.3:a:microsoft:live_meeting:2007
Microsoft » Lync » Version: 2010

cpe:2.3:a:microsoft:lync:2010
Microsoft » Lync » Version: 2013

cpe:2.3:a:microsoft:lync:2013
Microsoft » Office » Version: 2007

cpe:2.3:a:microsoft:office:2007
Microsoft » Office » Version: 2010

cpe:2.3:a:microsoft:office:2010
Microsoft » Silverlight » Version: 5.0

cpe:2.3:a:microsoft:silverlight:5.0
Microsoft » Skype For Business » Version: 2016

cpe:2.3:a:microsoft:skype_for_business:2016
Microsoft » Word Viewer » Version: N/A

cpe:2.3:a:microsoft:word_viewer:-
Microsoft » Windows 10 » Version: N/A

cpe:2.3:o:microsoft:windows_10:-
Microsoft » Windows 10 » Version: 1511

cpe:2.3:o:microsoft:windows_10:1511
Microsoft » Windows 10 » Version: 1607

cpe:2.3:o:microsoft:windows_10:1607
Microsoft » Windows 7 » Version: N/A

cpe:2.3:o:microsoft:windows_7:-
Microsoft » Windows 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_8.1:-
Microsoft » Windows 8.1 » Version: 6.3.9600.20520

cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20520
Microsoft » Windows Rt 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_rt_8.1:-
Microsoft » Windows Server 2008 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2008:-
Microsoft » Windows Server 2008 » Version: r2

cpe:2.3:o:microsoft:windows_server_2008:r2
Microsoft » Windows Server 2012 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2012:-
Microsoft » Windows Server 2012 » Version: r2

cpe:2.3:o:microsoft:windows_server_2012:r2
Microsoft » Windows Vista » Version: N/A

cpe:2.3:o:microsoft:windows_vista:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3209

Products

Pricing

Contact Us