4 matches found
CVE-2017-0090
creationtimestamp| type| source ---|---|--- 2017-03-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41653...
Remote code execution
Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Window...
CVE-2017-0090
CVE-2017-0090 is a real Uniscribe vulnerability in USP10 (Windows Uniscribe) where an invalid memory write in the MergeLigRecords function can be triggered by rendering text with a crafted font via API calls such as DrawText, leading to remote code execution. The connected Exploit-DB entries (e.g...
MS17-011: Security Update for Microsoft Uniscribe (4013076)
The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist in Windows Uniscribe due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit these to execut...