CVE-2017-8680

MEDIUM

Windows Kernel - Information Disclosure via Improper Memory Object Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-8680. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit leverages an uninitialized memory disclosure vulnerability in the win32k!NtGdiGetGlyphOutline system call on Windows 7 and 8. It allocates a buffer larger than the glyph outline data, causing uninitialized kernel memory to be leaked to user-mode.

Description

The Windows kernel component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT 8.1 allows an information disclosure vulnerability when it improperly handles objects in memory, aka "Win32k Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8678, CVE-2017-8677, CVE-2017-8681, and CVE-2017-8687.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · c++doswindows

https://www.exploit-db.com/exploits/42741

View Code ZIP pw:eip

This exploit leverages an uninitialized memory disclosure vulnerability in the win32k!NtGdiGetGlyphOutline system call on Windows 7 and 8. It allocates a buffer larger than the glyph outline data, causing uninitialized kernel memory to be leaked to user-mode.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows 7 and 8 (win32k.sys)

Auth required

Prerequisites: Local access to a vulnerable Windows 7 or 8 system

MITRE ATT&CK

T1003 - OS Credential Dumping T1082 - System Information Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/100722

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1039338

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/42741/

Patch, Vendor Advisory x_refsource_confirm

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8680

Scores

CVSS v3 5.5

EPSS 0.0423

EPSS Percentile 89.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-200

Status published

Products (8)

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

microsoft/windows_server_2008

microsoft/windows_server_2008 r2 sp1 (2 CPE variants)

microsoft/windows_server_2012

microsoft/windows_server_2012 r2

Microsoft Corporation/Windows kernel Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold a

Published Sep 13, 2017

Tracked Since Feb 18, 2026