CVE-2014-1824

Name of the Vulnerable Software and Affected Versions Windows Journal versions in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1

Description A remote code execution issue exists in the way that Windows Journal parses specially crafted files. The issue could lead to remote code execution if a user opens a specially crafted Journal file. If a user is logged on with administrative rights, an attacker who successfully exploits this issue could take complete control of an affected system. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Recommendations For Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1, avoid opening specially crafted Journal files until a patch is available. As a temporary workaround, consider restricting access to Windows Journal to minimize the risk of exploitation. Restrict user rights on the system to minimize the impact of a potential exploit.