Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2010/12/16 7:0 p.m.6 views

CVE-2010-3957

Double free vulnerability in the OpenType Font OTF driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a crafted OpenType font, aka "OpenType Font Double Free...

6.6AI score0.0183EPSS
Exploits0References4
CVE
CVE
added 2010/12/16 7:0 p.m.54 views

CVE-2010-3957

CVE-2010-3957 is a Windows OpenType Font (OTF) driver vulnerability (double-free) affecting Windows XP SP2–SP3, Server 2003 SP2, Vista SP1–SP2, Server 2008 Gold SP2/R2, and Windows 7. The issue resides in the OTF driver’s memory handling while parsing OpenType fonts, enabling local privilege esca...

7.3CVSS6.4AI score0.0183EPSS
Exploits0References4Affected Software6
Tenable Nessus
Tenable Nessus
added 2010/12/15 12:0 a.m.38 views

MS10-091: Vulnerabilities in the OpenType Font (OTF) Driver Could Allow Remote Code Execution (2296199)

The remote Windows host contains a version of the OpenType Font OTF Format Driver that is affected by two vulnerabilities : - The driver does not properly index an array when parsing OpenType fonts, which could allow a remote attacker to run arbitrary code in kernel mode. CVE-2010-3956 - The driv...

9.3CVSS5.8AI score0.1436EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2010/12/14 12:0 a.m.11 views

Microsoft OpenType Font Format Driver Double Free Code Execution (MS10-091; CVE-2010-3957)

OpenType is a font format developed jointly by Microsoft and Adobe as an extension of Apple's TrueType font format. A remote code execution vulnerability has been reported in the way Microsoft Windows OpenType Font OTF format driver improperly parses specially crafted OpenType fonts. A remote...

6.9CVSS7.3AI score0.0183EPSS
Exploits0
Rows per page
Query Builder