The EPATHOBJ::bFlatten function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Denial Of Service
Path Traversal
Microsoft
Windows 7
Windows 8
+6
NVD
Exploit-DB
CVSS 2.0
4.9
EPSS
1.8%