4 matches found
Microsoft Windows OTF格式驱动多个本地权限提升漏洞(MS10-078)
BUGTRAQ ID: 43778,43779 CVE ID: CVE-2010-2740,CVE-2010-2741 Microsoft Windows是微软发布的非常流行的操作系统。 在处理特制OpenType字体时,OTF格式驱动未正确执行整数计算,且未能正确的分配内存。本地登录的用户可以通过运行特制的应用程序来利用这些漏洞,导致执行任意内核态代码。 Microsoft Windows XP SP3 Microsoft Windows XP Pro x64版SP2 Microsoft Windows Server 2003 SP2 厂商补丁: Microsoft ---------...
CVE-2010-2740
The CVE-2010-2740 entry corresponds to two Windows OpenType Font (OTF) format driver vulnerabilities (CVE-2010-2740 and CVE-2010-2741) affecting Windows XP SP2/SP3 and Windows Server 2003 SP2. The OpenType Font (OTF) format driver is vulnerable in how it allocates memory when parsing specially cr...
OpenType Font (OTF) Format Driver Privilege Elevation Vulnerabilities (2279986)
This host is missing a critical security update according to Microsoft Bulletin MS10-078. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS10-078: Vulnerabilities in the OpenType Font (OTF) Format Driver Could Allow Elevation of Privilege (2279986)
The remote Windows host contains a version of the OpenType Font OTF Format Driver that is affected by two vulnerabilities : - The driver does not properly allocate memory when parsing a specially crafted font, which could allow a local attacker to run arbitrary code in kernel mode. CVE-2010-2740 ...