CVE-2010-3957

HIGH Year: 2010
CVSS v3 Score
7.3
High
CVSS v2 Score
6.9
Medium
Weakness Type
CWE-399
View all →

Vulnerability Description

Double free vulnerability in the OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a crafted OpenType font, aka "OpenType Font Double Free Vulnerability."

Related Vulnerabilities

CVE-2018-0102

HIGH
CVSS:7.4(High)

A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. Th...

CWE-3992018

CVE-2018-0165

HIGH
CVSS:7.4(High)

A vulnerability in the Internet Group Management Protocol (IGMP) packet-processing functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to exhaust buffers on an aff...

CWE-3992018

CVE-2018-0241

HIGH
CVSS:7.4(High)

A vulnerability in the UDP broadcast forwarding function of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the affected device....

CWE-3992018

CVE-2018-15373

HIGH
CVSS:7.4(High)

A vulnerability in the implementation of Cisco Discovery Protocol functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to exhaust memory on a...

CWE-3992018

CVE-2019-16018

HIGH
CVSS:7.4(High)

A vulnerability in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of s...

CWE-3992019

CVE-2019-1796

HIGH
CVSS:7.4(High)

A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of se...

CWE-3992019