Microsoft Windows TrueType Font (TTF)远程代码执行漏洞（MS12-078)

BUGTRAQ ID: 56842 CVECAN ID: CVE-2012-4786 Microsoft Windows是Microsoft开发的Windows是目前世界上用户最多、并且兼容性最强的操作系统。 Microsoft Windows未正确处理TrueType Font TTF文件而存在安全漏洞。通过诱使用户浏览恶意网站或打开恶意文件，未经身份验证的远程攻击者可利用此漏洞在内核态中执行任意代码。 0 Microsoft Windows RT Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows XP...

CVE-2012-4786

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allow remote attackers to execute arbitrary code via a crafted TrueType Font TTF...

CVE-2012-4786

CVE-2012-4786 affects Windows kernel-mode drivers handling TrueType/OpenType font parsing. The advisory set shows remote code execution via crafted TTF/OTF files affecting Windows XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1, Windows 8, Server 2012, and RT. Root cause...

Microsoft Windows TrueType Font Parsing Remote Code Execution (MS12-078; CVE-2012-4786)

A remote code execution vulnerability has been reported in Microsoft Windows...

MS12-078: Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2783534)

The remote Windows host is affected by the following remote code execution vulnerabilities : - An OpenType Font parsing vulnerability exists due to the way OpenType font files are handled. CVE-2012-2556 - A TrueType Font parsing vulnerability exists due to the way TrueType font files are...