CVE-2014-1817

CVE-2014-1817 concerns a vulnerability in usp10.dll (Uniscribe) that affects multiple Windows versions (Server 2003 SP2, Vista, Server 2008/2008 R2, Windows 7/8/8.1, Server 2012/R2) and related Office components. The issue arises from processing a crafted EMF+ record in a font file, enabling remo...

MS13-060: Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2850869)

The version of Microsoft Windows installed on the remote host includes a vulnerable version of the Unicode Script Processor, also known as Uniscribe. Some font types are not parsed correctly, which can result in memory corruption. An attacker could exploit this by tricking a user into viewing a...

Embedded Base-64 Encoded TTF Files (CVE-2010-2738)

Unicode Script Processor is a Windows component that enables a text layout client to format complex scripts. A remote code execution vulnerability has been reported in the way affected versions of Microsoft Windows incorrectly parse specific font types. A remote attacker could exploit this issue...

MS10-063: Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2320113)

The version of Microsoft Windows or Microsoft Office on the remote host includes a version of the Unicode Script Processor Usp10.dll, also known as Uniscribe, which incorrectly validates a table in OpenType fonts. If an attacker can trick a user on the affected system into visiting a malicious...