Lucene search
K

10 matches found

0day.today
0day.today
added 2015/09/18 12:0 a.m.93 views

MS15-078 Microsoft Windows Font Driver Buffer Overflow Exploit

Exploit for windows platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'MS15-07...

9.3CVSS0.6AI score0.8669EPSS
Exploits7
Circl
Circl
added 2015/09/17 12:0 a.m.13 views

CVE-2015-2426

creationtimestamp| type| source ---|---|--- 2015-09-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38222 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/ms15078atmfdbof.rb 2020-10-09 16:42:24+00:00| seen...

9.3CVSS7.5AI score0.8669EPSS
Exploits6References6
Metasploit
Metasploit
added 2015/09/02 10:28 p.m.81 views

MS15-078 Microsoft Windows Font Driver Buffer Overflow

This module exploits a pool based buffer overflow in the atmfd.dll driver when parsing a malformed font. The vulnerability was exploited by the hacking team and disclosed in the July data leak. This module has been tested successfully on vulnerable builds of Windows 8.1 x64. This module requires...

8.8CVSS6.8AI score0.8669EPSS
Exploits7
The Hacker News
The Hacker News
added 2015/07/20 6:25 p.m.38 views

Microsoft releases Emergency Patch Update for all versions of Windows

In the wake of a critical Remote Code Execution vulnerability in all supported versions of its operating system platform, Microsoft has just issued an emergency fix. Yes, it’s time to patch your Windows operating system against an alarming security hole that could allow remote attackers to run...

9.3CVSS7.1AI score0.8669EPSS
Exploits6
CVE
CVE
added 2015/07/20 6:0 p.m.923 views

CVE-2015-2426

CVE-2015-2426 is a Windows OpenType Font Driver vulnerability (ATMFD.DLL) that causes a pool/heap overflow when processing OpenType fonts, allowing remote code execution. The issue arises from a flawed handling of font data (notably the Class1Count field in the GPOS/CFF paths) where an invalid ze...

9.3CVSS7.4AI score0.8669EPSS
In wildExploits6References7Affected Software9
Cvelist
Cvelist
added 2015/07/20 6:0 p.m.31 views

CVE-2015-2426

Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a...

7.3AI score0.8669EPSS
Exploits6References6
ATTACKERKB
ATTACKERKB
added 2015/07/20 12:0 a.m.45 views

CVE-2015-2426

Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a...

9.3CVSS1.6AI score0.8669EPSS
In wildExploits6References7
Symantec
Symantec
added 2015/07/20 12:0 a.m.44 views

Microsoft Windows OpenType Font Driver CVE-2015-2426 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Microsoft Window...

9.3CVSS7.7AI score0.8669EPSS
Exploits6References1Affected Software5
Check Point Advisories
Check Point Advisories
added 2015/07/20 12:0 a.m.12 views

Microsoft Windows ATMFD Font Driver Kernel Pool Overflow (MS15-078: CVE-2015-2426)

A flaw has been discovered in Microsoft Windows OTF files. Successful exploitation could lead to a kernel pool overflow when a system attempt to copy data results in memory corruption...

9.3CVSS2.9AI score0.8669EPSS
Exploits6
Kaspersky
Kaspersky
added 2015/07/20 12:0 a.m.45 views

KLA10635 RCE vulnerability in Microsoft Font Driver

A remote code execution vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can take complete control of the affected system. This vulnerability can be exploited remotely via a specially crafted OpenType fonts. Original advisories CVE-2015-2426...

9.3CVSS9AI score0.8669EPSS
Exploits6References5
Rows per page
Query Builder