4 matches found
Microsoft Windows EOT Font Engine Information Disclosure (CVE-2018-0760)
An information disclosure vulnerability has been reported in the EOT component of Microsoft Windows operating systems. The vulnerability is due to improper handling of objects in the Windows EOT Font Engine. A remote attacker could exploit this vulnerability by enticing a user to open specially...
Information disclosure
The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". This CVE ID is unique fro...
CVE-2018-0760
Summary: CVE-2018-0760 affects the Windows Embedded OpenType (EOT) font engine in Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012. The vulnerability arises from the EOT font engine’s handling of embedded fonts, leading to information disclosure. What’s vulnerable: Windows EOT Font ...
KB4074587: Windows 7 and Windows Server 2008 R2 February 2018 Security Update
The remote Windows host is missing security update 4074587 or cumulative update 4074598. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...