Vulnerability in 64-bit Windows 7 & Windows Server 2008 R2

Microsoft has warned users of vulnerability in 64-bit Windows 7 and Windows Server 2008 R2.

According to Microsoft’s Jerry Bryant they are investigating into a vulnerability in the Windows Canonical Display Driver (cdd.dll) that enables applications to use graphics and formatted text on the video display and printer. The vulnerability is due to the driver’s failure in properly parsing the information copied from user mode to kernel mode.

The bug would most likely only make the vulnerable machines to reboot. But if the attacker would bypass the Windows’s memory randomization protections (ASLR), which prevents code execution attacks, it could allow a hacker to silently install a malware. The malware can be installed by tricking the victim into viewing a malicious image file on a website or in email.

According to Microsoft, they are working on a security update to address the vulnerability. In the meantime, users can prevent attacks by disabling the Windows Aero Theme. To turn it off, choose Start->Control Panel->Click on Appearance and Personalization->Click on Change the Theme->Select one of the Basic and High Contrast Themes.

Microsoft Security Advisory can be read here.