|CVSS SCORE||6.9, (AV:L/AC:M/Au:N/C:C/I:C/A:C)|
The specific flaw exists within RGNOBJ objects. An integer overflow vulnerability occurs when an attacker combines rectangles with special coordinates. An attacker can leverage this vulnerability to escalate privileges and execute code under the context of SYSTEM.
Microsoft has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||bee13oy of CloverSec Labs