Find a Partner
This window is encrypted for your security.
Need help? Ask the community or hire an expert.
Go to Avira Answers
In the wild:
Platforms / OS:
• Windows XP
• Windows 2003
• Windows Vista
• Windows Server 2008
• Windows 7
• Can be used to execute malicious code
• Makes use of software vulnerability
The exploit EXP/CVE-2011-3402 is targeting the True-Type-Font parsing engine which is run in kernel-mode. This fact makes this exploit very dangerous as an attacker can gain system level privileges.
An exploitation gives the attacker the ability to install programs/drivers, view, change, or delete data or he could create new accounts with full user rights.
In an e-mail scenario the exploit needs user interaction (for instance by opening a malicious word document) to get executed. The discovered exploit comes in the form of a Microsoft word document.
Other possibilities may include using embedded TTF fonts in other types of files such as PDF.
• 8.02.06.108 ( 07/11/2011 )
Description inserted by Andrei Gherman on Monday, November 7, 2011
Description updated by Andrei Gherman on Monday, November 7, 2011