Skip to main content
Published Nov 03, 2011 | Updated Sep 15, 2017

Exploit:Win32/CVE-2011-3402

Detected by Microsoft Defender Antivirus

Aliases: No associated aliases

Summary

Exploit:Win32/CVE-2011-3402 is a detection for malicious code that attempts to exploit a vulnerability in the Win32 TrueType font parsing engine in the Microsoft Windows component "Win32k.sys". An attacker who successfully exploits this vulnerability could run arbitrary code in kernel mode. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/

For more information and guidance about this vulnerability, see the following Microsoft Knowledge Base article KB2639658 and Security Advisory.

Follow us