CVE-2013-3903

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Windows 8 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1

Description A denial of service issue exists in the Microsoft Windows kernel, caused by improper processing of a specifically crafted TrueType font (TTF) file. This can allow local users to cause a denial of service, resulting in the system stopping to respond and restarting.

Recommendations For Windows 8, update to a version that includes the fix for the TrueType Font Parsing issue. For Windows Server 2012 Gold and R2, apply the necessary patch to resolve the kernel-mode driver issue. For Windows RT Gold and 8.1, ensure that all security updates are applied to prevent exploitation of the vulnerability. As a temporary workaround, consider restricting the use of TrueType font files until a patch is available.