6 matches found
CVE-2020-1020
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could...
Introducing the In-the-Wild Series
This is part 1 of a 6-part series detailing a set of vulnerabilities found by Project Zero being exploited in the wild. To read the other parts of the series, head to the bottom of this post. At Project Zero we often refer to our goal simply as “make 0-day hard”. Members of the team approach this...
CVE-2020-1020
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could...
CVE-2020-1020
CVE-2020-1020 describes a remote code execution in Microsoft Windows via the Windows Adobe Font Manager Library when handling specially crafted Adobe Type 1 PostScript fonts. The flaw affects Windows versions other than Windows 10, with exploitation enabling code execution remotely after processi...
KB4550970: Windows 8.1 and Windows Server 2012 R2 April 2020 Security Update
The remote Windows host is missing security update 4550970 or cumulative update 4550961. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when a Windows scheduled task improperly handles file redirections. An attacker who successfully...
KB4550965: Windows 7 and Windows Server 2008 R2 April 2020 Security Update
The remote Windows host is missing security update 4550965 or cumulative update 4550964. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploit...