Microsoft is investigating a new public report of a vulnerability in the Canonical Display Driver (cdd.dll). Although it is possible that the vulnerability could allow code execution, successful code execution is unlikely due to memory randomization. In most scenarios, it is much more likely that an attacker who successfully exploited this vulnerability could cause the affected system to stop responding and automatically restart.
Although no attacks have been reported yet but Microsoft has not yet come up with an effective solution to this loop hole.Microsoft currently suggests to switch of aero based themes and revert to basic themes.
The following are the affected Operating Systems : -
- Windows 7 for x64-based Systems
- Windows Server 2008 R2 for x64-based Systems
- Windows Server 2008 R2 for Itanium-based Systems
The detailed advisory can be read here.















Posted in
Tags:


