5 matches found
Microsoft Windows EOT Font Engine Information Disclosure (CVE-2018-0855)
An information disclosure vulnerability exists in the EOT component of Microsoft Windows operating systems. The vulnerability is due to improper handling of objects in the Windows EOT Font Engine. A remote attacker could exploit this vulnerability by enticing a user to open specially crafted...
Information disclosure
The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". Thi...
CVE-2018-0855
CVE-2018-0855 affects the Windows Embedded OpenType (EOT) font engine in Windows 7 SP1 and Windows Server 2008 R2, where embedding fonts is mishandled and information disclosure could occur. Root cause: improper handling/parsing of embedded fonts in the EOT engine. Impact (as stated): information...
KB4074587: Windows 7 and Windows Server 2008 R2 February 2018 Security Update
The remote Windows host is missing security update 4074587 or cumulative update 4074598. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...
Microsoft Windows CVE-2018-0855 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems...