CVE-2020-16911

Name of the Vulnerable Software and Affected Versions: Windows Graphics Device Interface (GDI) (affected versions not specified)

Description: A remote code execution issue exists in the way the Windows Graphics Device Interface (GDI) handles objects in memory. This could allow an attacker to take control of the affected system, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The impact may be less severe for users with limited user rights. An attacker could exploit this issue through various means, including hosting a specially crafted website or providing a specially crafted document file. The security update addresses the issue by correcting how the Windows GDI handles objects in memory.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.