The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka âWindows EOT Font Engine Information Disclosure Vulnerabilityâ. This CVE ID is unique from CVE-2018-0755, CVE-2018-0761, and CVE-2018-0855.
[
{
"product": "Microsoft Windows Embedded OpenType (EOT) font engine",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012."
}
]
}
]