Microsoft Windows Graphics Component Remote Code Execution (MS16-120; CVE-2016-3393)

A remote code execution vulnerability has been reported in Microsoft Windows Graphics Component. The vulnerability is due to the improper handling of objects in the memory.A remote attackers could exploit this vulnerability by enticing users to view a specially crafted web page, or a document fil...

Microsoft Windows - win32k.sys TTF Processing win32k!sbit_Embolden win32k!ttfdCloseFontContext Use-After-Free (MS16-120)

Microsoft Windows - win32k.sys TTF Processing win32k!sbitEmbolden win32k!ttfdCloseFontContext Use-After-Free MS16-120 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=868 We have encountered Windows kernel crashes in the win32k!sbitEmbolden and win32k!ttfdCloseFontContext functio...

Microsoft Windows - 'win32k.sys' TTF Processing win32k!sbit_Embolden / win32k!ttfdCloseFontContext Use-After-Free (MS16-120)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=868 We have encountered Windows kernel crashes in the win32k!sbitEmbolden and win32k!ttfdCloseFontContext functions while processing corrupted TTF font files. Excerpts of them are shown below: --- KERNELMODEEXCEPTIONNOTHANDLED 8e...

Microsoft Patches Five Zero Days Under Attack

Update: Microsoft today said it mislabeled CVE-2016-7189 in bulletin MS16-119 as exploited. “There is no evidence of any active attacks using this vulnerability and the bulletin text has been corrected.” – a Microsoft spokesperson said. Microsoft today patched a handful of zero-day vulnerabilitie...

MS16-120 and MS16-123: Description of the security update for kernel-mode drivers: October 11, 2016

MS16-120 and MS16-123: Description of the security update for kernel-mode drivers: October 11, 2016 Summary This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system an...

MS16-120: Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012: October 11, 2016

MS16-120: Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012: October 11, 2016 View products that this article applies to. Summary This update resolves vulnerabilities in Microsoft .NET Framework. The vulnerabilities could allow remote code execution if ...

Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3263)

An information disclosure vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the True Type Font TTF driver handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted EMF fil...

Microsoft Windows True Type Font Parsing Elevation of Privilege (MS16-120: CVE-2016-7182)

A memory corruption vulnerability exists in the Win32k-GDI component. The vulnerability is due to the way Windows Graphics Component handles objects in memory. An attacker who successfully exploits this vulnerability could run arbitrary code in kernel mode...

Microsoft Windows True Type Font Parsing Information Disclosure (MS16-120: CVE-2016-3209)

An information disclosure vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the True Type Font TTF driver handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted EMF fil...

Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3262)

An information disclosure vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the True Type Font TTF driver handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted EMF fil...

MS16-120: Security update for Microsoft graphics component: October 11, 2016

Resolves vulnerabilities in Microsoft Windows, Microsoft Office, Skype for Business, Silverlight, Microsoft Lync, and in the Microsoft .NET Framework that could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document. This update...