Update Protection against Microsoft Windows Canonical Display Driver Denial of Service Vulnerability (MS10-043)
| Check Point Reference: | CPAI-2010-083 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Microsoft Security Advisory (2028859) Microsoft Security Bulletin MS10-043 |
|
| Industry Reference(s): | CVE-2009-3678 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Windows 7 for x64-based Systems Windows Server 2008 R2 for x64-based Systems Windows Server 2008 R2 (Itanium) | ||
| Vulnerability Description A denial of service vulnerability has been reported in Microsoft Windows Canonical Display Driver (cdd.dll). The Canonical Display Driver (cdd.dll) is used by desktop composition to blend GDI and DirectX drawing. CDD emulates the interface of a Windows XP display driver for interactions with the Win32k GDI graphics engine. A remote attacker may exploit this issue to create a denial of service condition on a vulnerable system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS10-043 |
|
|
Vulnerability Details The vulnerability is due to an error in the Windows Canonical Display Driver that fails to properly parse information copied from user mode to kernel mode. A remote attacker may exploit this issue by convincing a user to view a specially crafted image file with an affected application. Only applications that use the APIs for GDI for rendering images are affected by this issue. Successful exploitation of this vulnerability could cause the affected system to stop responding and automatically restart. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.