Vulnerability in N/a
CVE-2011-3402
Unspecified vulnerability in the TrueType font parsing engine in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7…
EPSS: 0.883 (99.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Public proof-of-concept exploits
References
- 49121 (x_refsource_SECUNIA, third-party-advisory)
- oval:org.mitre.oval:def:15645 (x_refsource_OVAL, signature, vdb-entry)
- TA12-164A (x_refsource_CERT, third-party-advisory)
- blogs.mcafee.com/mcafee-labs/the-day-of-the-golden-jackal-–-further-tales-of-th… (x_refsource_MISC)
- 1027039 (vdb-entry, x_refsource_SECTRACK)
- 49122 (x_refsource_SECUNIA, third-party-advisory)
- MS11-087 (x_refsource_MS, vendor-advisory)
- www.symantec.com/content/en/us/enterprise/media/security_response/whitepapers/w… (x_refsource_MISC)
- TA11-347A (x_refsource_CERT, third-party-advisory)
- oval:org.mitre.oval:def:13998 (x_refsource_OVAL, signature, vdb-entry)
Frequently asked questions
- What is CVE-2011-3402?
- CVE-2011-3402 is a vulnerability in N/a. Published 2011-11-04.
- Is CVE-2011-3402 known to be exploited?
- Yes. CVE-2011-3402 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2025-10-06), indicating it is being actively exploited. 3 public proof-of-concept repositories are indexed.