返回 CVE 瀏覽器

CVE-2014-0263

CRITICAL

9.3

CVSS Severity Score

EPSS Score0.0840%

EPSS Percentile10.55th

Published2014年2月12日

Last Modified2026年4月29日

Vulnerability Description

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a large 2D geometric figure that is encountered with Internet Explorer, aka "Microsoft Graphics Component Memory Corruption Vulnerability."

Affected Platforms (CPE)

💻

Microsoft

Windows 7

All versions

💻

Microsoft

Windows 8

All versions

💻

Microsoft

Windows 8.1

All versions

💻

Microsoft

Windows Rt

All versions

💻

Microsoft

Windows Rt 8.1

All versions

💻

Microsoft

Windows Server 2008

= r2

💻

Microsoft

Windows Server 2012

All versions

💻

Microsoft

Windows Server 2012

= r2

References & Advisories

🔗 http://osvdb.org/103160

🔗 http://secunia.com/advisories/56781

🔗 http://www.securityfocus.com/bid/65393

🔗 http://www.securitytracker.com/id/1029743

🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-007

🔗 http://osvdb.org/103160

🔗 http://secunia.com/advisories/56781

🔗 http://www.securityfocus.com/bid/65393

相關漏洞威脅

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...