A serious security vulnerability in Microsoft s newest operating system could expose users to code execution and denial-of-service attacks. The vulnerability only affects Windows 7 and Windows Server 2008 R2. The flaw was found in the Canonical Display Driver (cdd.dll), which is used by desktop composition to blend the Windows Graphics Device Interface (GDI) and DirectX drawing. Microsoft has activated its security response process and promises a patch once the investigations are complete. Affected users should consider disabling the Windows Aero Theme to prevent the issue from being exploited.
Source: https://threatpost.com/windows-7-hit-display-driver-security-hole-051810/73987/