Microsoft Windows Adobe Font Driver CVE-2015-2508 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges and execute arbitrary code on affected system. Technologies Affected Avaya Meeting Exchange - Client Registration Server 6.0 Avaya Meeting...

Microsoft Windows Adobe Font Driver CVE-2015-2507 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Avaya Meeting Exchange - Client Registration Server 6.0 Avaya Meeting Exchange - Client...

Microsoft Windows Adobe Font Driver CVE-2015-2512 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Avaya Meeting Exchange - Client Registration Server 6.0 Avaya Meeting Exchange - Client...

Windows ATMFD.DLL CFF table (ATMFD+0x3440b / ATMFD+0x3440e) Invalid Memory Access Exploit

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=384&can=1 We have encountered a number of Windows kernel crashes in the ATMFD.DLL OpenType driver while processing corrupted OTF font files, such as: ---...

Microsoft Windows - 'ATMFD.DLL' CFF table (ATMFD+0x34072 / ATMFD+0x3407b) Invalid Memory Access

Source: https://code.google.com/p/google-security-research/issues/detail?id=383&can=1 We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file: --- PAGEFAULTINNONPAGEDAREA 50 Invalid system memory was referenced. This cannot be protect...

Hacking Team attack code analysis Part5: font 0day second bomb+Win32k KALSR bypass vulnerability-vulnerability warning-the black bar safety net

Following the 360Vulcan last week analyzed the Hacking Team leaks information in the exposure of the three Flash exploits and a Adobe Font Driver kernel vulnerability after a link see below. Hacking Team leaks information continues to be found that there is a new attack code and the 0day...

Hacking Team attack code analysis Part5 Adobe Font Driver kernel privilege elevation vulnerability the second bomb+Win32k KALSR bypass vulnerability-vulnerability warning-the black bar safety net

0x01 vulnerability principle analysis: By simply browsing attack code, we know the attack code used a Win32k. sys in the KASLR bypass vulnerability get the Win32k base, and organize the ROP chain, at the same time, load a font filefont-data. binto use the font driver vulnerability, trigger the RO...

Microsoft Windows Adobe Font Driver 'atmfd.dll' Remote Lift Vulnerability

Microsoft Windows is a popular operating system. A remote elevation of privilege vulnerability exists in Microsoft Windows 'atmfd.dll', which allows remote attackers to exploit the vulnerability to construct a malicious font file that can be parsed by a user and can be elevated to execute arbitra...

Hacking Team attack code analysis Part 3 : the Adobe Font Driver kernel driver elevation of privilege vulnerability-vulnerability warning-the black bar safety net

In order to in IE and Chrome bypassing its sandbox mechanism to completely control the user's system, Hacking Team also utilizes a Windows kernel driver: the Adobe Font Driveratmfd.dllin the presence of a font 0day vulnerability to achieve privilege escalation and bypass the sandbox mechanism. Th...

Microsoft windows Adobe font driver buffer overflow vulnerability (CNVD-2015-01623)

Microsoft Windows is an operating system developed by Microsoft. A security vulnerability exists in Microsoft Windows Adobe due to a failure of the font driver to properly handle specially crafted files or HTML, which allows attackers to exploit the vulnerability for buffer overflow attacks that...

Microsoft windows Adobe font driver memory information disclosure vulnerability (CNVD-2015-01627)

Microsoft Windows is an operating system developed by Microsoft. Microsoft Windows Adobe Font Driver fails to properly handle specially crafted files or HTML, allowing attackers to exploit vulnerabilities to obtain sensitive information about system memory and bypass ASLR protection...

Microsoft windows Adobe Font Driver Buffer Overflow Vulnerability

Microsoft Windows is an operating system developed by Microsoft. Microsoft Windows Adobe Font Driver does not properly handle specially crafted files or HTML, allowing attackers to exploit the vulnerability for buffer overflow attacks that can crash applications or execute arbitrary code...

Microsoft windows Adobe Font Driver Denial of Service Vulnerability

Microsoft Windows is an operating system developed by Microsoft. Microsoft Windows Adobe Font Driver fails to properly handle specially crafted files or HTML, allowing attackers to exploit the vulnerability to trigger memory allocation errors and conduct denial of service attacks...

Microsoft windows Adobe font driver memory information disclosure vulnerability (CNVD-2015-01626)

Microsoft Windows is an operating system developed by Microsoft. Microsoft Windows Adobe Font Driver fails to properly handle specially crafted files or HTML, allowing attackers to exploit vulnerabilities to obtain sensitive information about system memory and bypass ASLR protection...

Microsoft windows Adobe font driver buffer overflow vulnerability (CNVD-2015-01622)

Microsoft Windows is an operating system developed by Microsoft. A security vulnerability exists in Microsoft Windows Adobe due to a failure of the font driver to properly handle specially crafted files or HTML, which allows attackers to exploit the vulnerability for buffer overflow attacks that...

CVE-2015-0093

Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted 1 web site or 2 file,...

CVE-2015-0092

Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted 1 web site or 2 file,...

CVE-2015-0091

Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted 1 web site or 2 file,...

CVE-2015-0090

Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted 1 web site or 2 file,...

CVE-2015-0089

Adobe Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to obtain sensitive information from kernel memory, and possib...