CVE-2025-46738

An authenticated attacker can maliciously modify layout data files in the SEL-5033 installation directory to execute arbitrary code...

PT-2018-4583 · Harfbuzz +1 · Harfbuzz +1

Name of the Vulnerable Software and Affected Versions: HarfBuzz versions prior to 1.0.4 Description: The issue allows remote attackers to cause a denial of service, resulting in an invalid read of two bytes and application crash. This is due to mishandling of GPOS and GSUB tables, related to file...

CVE-2012-1890

CVE-2012-1890 affects win32k.sys in multiple Windows platforms (XP SP2/SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2, Windows 7 SP1) where keyboard-layout files are not properly validated, enabling local privilege escalation via a memory‑corruption bug in ReadLayoutFile that overwrites a ke...

Microsoft Windows XP - Keyboard Layouts Pool Corruption (PoC) (MS12-034)

Microsoft Windows XP - Keyboard Layouts Pool Corruption PoC MS12-034 =========== Description =========== Windows XP keyboard layouts pool corruption 0day PoC, post-MS12-034. Vulnerability exists in the function win32k!ReadLayoutFile, that parses keyboard layout files data. Possible attack vector ...

CVE-2012-0181

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly manage Keyboard Layout files, which allows local users to gain...

Spoofing

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly manage Keyboard Layout files, which allows local users to gain...