Adobe Font Driver Remote Code Execution Vulnerability (CVE-2015-0091)

  Severity: CRITICAL
  CVE Identifier: 2015-0091,MS15-021
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Adobe Font Driver is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted file or website. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1006551
  Trend Micro Deep Security DPI Rule Name: 1006551 - Adobe Font Driver Remote Code Execution Vulnerability (CVE-2015-0091)

  AFFECTED SOFTWARE AND VERSION

  • Adobe Font Driver