KLA11916 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An implementation vulnerability in Securi...

MS16-039: Security Update for Microsoft Graphics Component (3148522)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - Multiple elevation of privilege vulnerabilities exist in the Windows kernel-mode driver due to a failure to properly handle objects in memory. An attacker can exploit these...

KLA10788 Multiple vulnerabilities in Microsoft Graphics Component

Multiple serious vulnerabilities have been found in Microsoft Graphics Component as used in multiple Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. An improper memory objects handli...

Microsoft Graphics Component Memory Corruption (MS15-128: CVE-2015-6107)

A remote code execution vulnerability has been reported in Microsoft Graphics Component. The vulnerability involves an integer overflow leading to a buffer overflow in an internal graphics routine. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

KLA10718 Code execution vulnerabilities in Microsoft Graphics Component

Improper fonts handling was found in Microsoft Graphics Component used in Multiple Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Original advisories CVE-2015-6108...

Microsoft Windows Graphics Component CVE-2015-6108 Memory Corruption Vulnerability

Description Microsoft Windows is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft .NET Framework 3.0 SP2...

Microsoft Graphics Component Remote Code Execution (MS15-115: CVE-2015-6103)

A remote code execution vulnerability has been reported in Windows Graphics Component. The vulnerability is due to the way Windows components handle specially crafted TTF files. A remote attacker can exploit this issue by enticing a user to open a maliciously crafted TTF file...

Microsoft Windows Graphics Memory Remote Code Execution (MS15-115: CVE-2015-6104)

A remote code execution vulnerability has been reported in Windows Graphics Component. The vulnerability is due to the way Windows components handle specially crafted TTF files. A remote attacker can exploit this issue by enticing a user to open a maliciously crafted TTF file...

Buffer overflow

Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, and Live Meeting 2007 Console allows remote attackers to execute arbitrary code via a...

CVE-2015-2510

CVE-2015-2510 is a buffer overflow vulnerability in the Adobe Type Manager Library used by multiple Windows components (Vista SP2, Server 2008 SP2, Office 2007 SP3/2010 SP2, Lync and Live Meeting suites). The issue arises when processing crafted OpenType fonts, allowing remote code execution with...

MS15-097: Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (3089656)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in the Windows Adobe Type Manager Library due to improper handling of specially crafted OpenType fonts. An authenticated, remote attacker...

Microsoft Graphics Component Buffer Overflow Vulnerability (3089656)

This host is missing a critical security update according to Microsoft Bulletin MS15-097. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Releases 12 Security Updates (5 Critical and 7 Important Patches)

With the release of 12 Security Bulletins, Microsoft addresses a total of 56 vulnerabilities in its different products. The bulletins include five critical updates, out of which two address vulnerabilities in all versions of Windows. The September Patch Tuesday update released on second Tuesday o...

September 2015 Microsoft Patch Tuesday Security Bulletins

Microsoft today patched a vulnerability in its graphics component present in Windows, Office and Lync that has been publicly attacked, and is one of five vulnerabilities patched this month that have been publicly disclosed. Microsoft released a dozen bulletins today, five of them it rates critica...

Microsoft Windows Graphics Component Denial of Service (MS15-097; CVE-2015-2510)

A denial of service vulnerability exists in Microsoft Windows Graphics Component. The vulnerability is due to an error while parsing certain files. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file...

Microsoft issues Security Patches for Windows 10 and Edge Browser

Updated your PCs to Windows 10? Now it’s time to patch your Windows 10 software. Microsoft has issued its monthly Patch Tuesday by releasing 14 security bulletins, nearly half of it address vulnerabilities in its latest operating system, Windows 10. Four of them are marked critical, affecting...

Microsoft Graphics Component Remote Code Execution (MS15-080: CVE-2015-2458)

Remote code execution vulnerabilities exist in Microsoft Windows. The vulnerability is due to an error in the way Microsoft Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts. A remote attacker can exploit this issue by enticing a victim to open a specially...

Microsoft Graphics Component Remote Code Execution (MS15-080: CVE-2015-2464)

A remote code execution vulnerability has been reported in Windows Graphics Component. The vulnerability is due to the way Windows components handle specially crafted TTF files. A remote attacker can exploit this issue by enticing a user to view TTF files in shared content...

Microsoft Graphics Component Remote Code Execution (MS15-080: CVE-2015-2462)

A remote code execution vulnerability has been reported in Windows Graphics Component. The vulnerability is due to the way Windows components handle specially crafted TTF files. A remote attacker can exploit this issue by enticing a user to view TTF files in shared content...

Microsoft Graphics Component Remote Code Execution (MS15-080: CVE-2015-2463)

A remote code execution vulnerability has been reported in Windows Graphics Component. The vulnerability is due to the way Windows components handle specially crafted TTF files. A remote attacker can exploit this issue by enticing a user to view TTF files in shared content...