VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 13, 2012· Updated Apr 29, 2026

CVE-2012-0156

CVE-2012-0156

Description

DirectWrite in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly render Unicode characters, which allows remote attackers to cause a denial of service (application hang) via a (1) instant message or (2) web site, aka "DirectWrite Application Denial of Service Vulnerability."

Affected products

9
  • Microsoft/Windows 74 versions
    cpe:2.3:o:microsoft:windows_7:*:sp1:x64:*:*:*:*:*+ 3 more
    • cpe:2.3:o:microsoft:windows_7:*:sp1:x64:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_7:*:sp1:x86:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_7:*:*:x64:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_7:*:*:x86:*:*:*:*:*
  • Microsoft/Windows Server 20084 versions
    cpe:2.3:o:microsoft:windows_server_2008:r2:*:itanium:*:*:*:*:*+ 3 more
    • cpe:2.3:o:microsoft:windows_server_2008:r2:*:itanium:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:r2:*:x64:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x86:*:*:*:*:*
  • Microsoft/Windows Vista
    cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.