|CVSS SCORE||9, (AV:N/AC:L/Au:N/C:C/I:P/A:P)|
The specific flaw exists within how the application handles a border containing a specific property. When parsing this property, the application will incorrectly free it. If the application attempts to render the object, a use-after-free condition can be made to occur. This can lead to code execution under the context of the application.
Microsoft has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Nikita Tarakanov (CISS Research Team) and Alexey Sintsov (Digital Security Research Group)