Lucene search
+L

493 matches found

NVD
NVD
added 2014/06/11 4:56 a.m.20 views

CVE-2014-1817

usp10.dll in Uniscribe aka the Unicode Script Processor in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Office 2007 SP3 and 2010 SP1 and SP2, Live Meeting...

9.3CVSS7.5AI score0.18875EPSS
Exploits0References7
Cvelist
Cvelist
added 2014/06/11 1:0 a.m.41 views

CVE-2014-1817

usp10.dll in Uniscribe aka the Unicode Script Processor in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Office 2007 SP3 and 2010 SP1 and SP2, Live Meeting...

8.7AI score0.18875EPSS
Exploits0References7
seebug.org
seebug.org
added 2013/08/25 12:0 a.m.41 views

Microsoft Windows Uniscribe字体解析远程代码执行漏洞(CVE-2013-3181)(MS13-060)

BUGTRAQ ID: 61697 CVECAN ID: CVE-2013-3181 Uniscribe是微软公司开发的Windows操作系统为正确演示Unicode文字而开发的组件。系统的核心是一个名为USP10.DLL的DLL。 受影响Microsoft Windows版本处理OpenType字体时,Unicode Scripts Processor存在远程代码执行漏洞,成功利用此漏洞造成内存破坏,攻击者以当前用户权限执行任意代码。 0 Microsoft Windows XP Professional Microsoft Windows XP Home Edition...

9.3CVSS6.9AI score0.20444EPSS
Exploits1
Prion
Prion
added 2013/08/14 11:10 a.m.20 views

Memory corruption

usp10.dll in the Unicode Scripts Processor in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted OpenType font, aka "Uniscribe Font Parsing Engine Memory Corruption Vulnerability."...

9.3CVSS7.9AI score0.20444EPSS
Exploits1References3
Symantec
Symantec
added 2013/08/13 12:0 a.m.41 views

Microsoft Windows Uniscribe Font Parsing CVE-2013-3181 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability when handling crafted font data. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious file or webpage. A successful exploit may allow arbitrary code to run in the context of the...

9.3CVSS7.2AI score0.20444EPSS
Exploits1Affected Software9
Check Point Advisories
Check Point Advisories
added 2013/08/13 12:0 a.m.30 views

Microsoft Windows Uniscribe Font Parsing Engine Memory Corruption (MS13-060; CVE-2013-3181)

A remote code execution vulnerability exists in the Unicode Scripts Processor included in affected versions of Microsoft Windows...

7.2AI score0.20444EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2011/07/05 12:0 a.m.26 views

Uniscribe Font Parsing Engine Remote Code Excution (MS10-063; CVE-2010-2738)

This is a memory corruption vulnerability in Microsoft Windows and Microsoft Office products. The vulnerability is due to improper input validation of a table in the TrueType font layout. Remote attacker could trigger this flaw by enticing a user to open a specially crafted TTF file. Successful...

9.3CVSS7.1AI score0.18537EPSS
Exploits5
NVD
NVD
added 2010/09/15 7:0 p.m.25 views

CVE-2010-2738

The Uniscribe aka new Unicode Script Processor implementation in USP10.DLL in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2, and Microsoft Office XP SP3, 2003 SP3, and 2007 SP2, does not properly validate tables associated with malformed OpenTy...

9.3CVSS7.3AI score0.18537EPSS
Exploits5References2
Prion
Prion
added 2010/09/15 7:0 p.m.18 views

Memory corruption

The Uniscribe aka new Unicode Script Processor implementation in USP10.DLL in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2, and Microsoft Office XP SP3, 2003 SP3, and 2007 SP2, does not properly validate tables associated with malformed OpenTy...

9.3CVSS7.9AI score0.18537EPSS
Exploits5References2Affected Software4
CVE
CVE
added 2010/09/15 6:0 p.m.74 views

CVE-2010-2738

Microsoft Windows/Office Uniscribe (USP10.DLL) vulnerability CVE-2010-2738 involves improper validation of tables in OpenType fonts, leading to remote code execution via crafted web pages or Office documents. Affected components include USP10.DLL across Windows XP SP2/SP3, Server 2003 SP2, Vista ...

9.3CVSS7.3AI score0.18537EPSS
Exploits5References2Affected Software4
Cvelist
Cvelist
added 2010/09/15 6:0 p.m.33 views

CVE-2010-2738

The Uniscribe aka new Unicode Script Processor implementation in USP10.DLL in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2, and Microsoft Office XP SP3, 2003 SP3, and 2007 SP2, does not properly validate tables associated with malformed OpenTy...

7.2AI score0.18537EPSS
Exploits5References2
Symantec
Symantec
added 2010/09/14 12:0 a.m.23 views

Microsoft Windows and Office Uniscribe Font Parsing Engine Remote Code Execution Vulnerability

Description Microsoft Windows and Office are prone to a remote code-execution vulnerability when handling crafted font data. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious file or webpage. A successful exploit may allow arbitrary code to run in the context...

8AI score
Exploits0Affected Software10
Tenable Nessus
Tenable Nessus
added 2010/09/14 12:0 a.m.41 views

MS10-063: Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2320113)

The version of Microsoft Windows or Microsoft Office on the remote host includes a version of the Unicode Script Processor Usp10.dll, also known as Uniscribe, which incorrectly validates a table in OpenType fonts. If an attacker can trick a user on the affected system into visiting a malicious...

9.3CVSS5.9AI score0.18537EPSS
Exploits5References2
Rows per page
Query Builder