Vulnerability in Microsoft Font Driver Could Allow Remote Code Execution (3079904)
Data de publicação: 13 agosto 2015
Schweregrad: : Crítico
Identificador(es) CVE: : CVE-2015-2426
Data do informe: 21 julho 2015
Descrição
This vulnerability is assigned as CVE-2015-2426 and is described as the following:
Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted OpenType font, aka "OpenType Font Driver Vulnerability."