CVE-2014-0263

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 7 SP1 through 8.1 Windows Server versions 2008 R2 SP1 through 2012 R2 Windows RT versions Gold through 8.1

Description The issue is related to the handling of specially crafted 2D geometric figures by Windows components, which can be exploited when a user views files containing such figures using Internet Explorer. This could allow an attacker to execute arbitrary code and gain complete control of the system, enabling them to install programs, view, change, or delete data, or create new accounts with full administrative rights.

Recommendations For Microsoft Windows versions 7 SP1 through 8.1, update to a version that includes the fix for this issue. For Windows Server versions 2008 R2 SP1 through 2012 R2, update to a version that includes the fix for this issue. For Windows RT versions Gold through 8.1, update to a version that includes the fix for this issue. As a temporary workaround, consider avoiding the use of Internet Explorer to view files that may contain specially crafted 2D geometric figures until a patch is available.