The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka âWindows EOT Font Engine Information Disclosure Vulnerabilityâ. This CVE ID is unique from CVE-2018-0755, CVE-2018-0760, and CVE-2018-0855.
[
{
"product": "Microsoft Windows Embedded OpenType (EOT) font engine",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Windows 7 SP1 and Windows Server 2008 R2"
}
]
}
]