3 matches found
Microsoft OpenType Font Index Privilege Escalation - Ver2 (CVE-2010-3956)
A privilege escalation vulnerability has been reported in the OpenType Font OTF format driver. The vulnerability is due to an error in the OpenType Font OTF format driver that fails to properly index an array when parsing OpenType fonts. A remote attacker could exploit this vulnerability via a...
CVE-2010-3956
CVE-2010-3956 concerns the OpenType Font (OTF) driver in multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2/R2, and Windows 7). The vulnerability arises from an error in indexing an array when parsing OpenType fonts, enabling a local privilege escalation....
MS10-091: Vulnerabilities in the OpenType Font (OTF) Driver Could Allow Remote Code Execution (2296199)
The remote Windows host contains a version of the OpenType Font OTF Format Driver that is affected by two vulnerabilities : - The driver does not properly index an array when parsing OpenType fonts, which could allow a remote attacker to run arbitrary code in kernel mode. CVE-2010-3956 - The driv...