CVE-2017-0060

Name of the Vulnerable Software and Affected Versions Windows (affected versions not specified)

Description The issue is related to the Windows Graphics Device Interface (GDI) and involves a lack of protection for internal data. This can be exploited by an attacker with local access to obtain confidential information from process memory, cause a denial of service, or have other impacts on the system, potentially through a specially crafted website. The vulnerability allows attackers to disclose sensitive information and affect the system. It is noted that while the information disclosure itself does not enable arbitrary code execution, it could facilitate such execution when combined with another vulnerability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.