Trend Micro Security

MS10-078:OpenType フォント (OTF) 形式ドライバーの脆弱性により、特権が昇格される (2279986)

  危険度: :
  CVE識別番号: CVE-2010-2740,CVE-2010-2741

  概要

This security update addresses vulnerabilities in the Windows OpenType Font (OTF) format driver that could allow elevation of privilege once a user views content rendered in a specially crafted OpenType font.

This vulnerability could only be exploited when the attacker is log on locally and not remotely.

  トレンドマイクロの対策

  影響を受けるソフトウェア

  • Windows Server 2003 Service Pack 2
  • Windows Server 2003 with SP2 for Itanium-based Systems
  • Windows Server 2003 x64 Edition Service Pack 2
  • Windows XP Professional x64 Edition Service Pack 2
  • Windows XP Service Pack 3