CVE-2015-0090
CVE-2015-0090 is a registry-object vulnerability in the Windows ATMFD.DLL font driver. An off‑by‑one bug sanitizing registry indices allows a load/store between the transient array and Registry[3], enabling a read/write‑what‑where primitive. Attackers can spray kernel pools and copy controlled da...