Lucene search
KdotZDI-18-196HistoryFeb 27, 2018 - 12:00 a.m.
Microsoft Windows Font Embedding Out-Of-Bounds Read Information Disclosure Vulnerability
2018-02-2700:00:00
kdot
www.zerodayinitiative.com
12
0.001 Low
EPSS
Percentile
41.0%
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of embedded fonts within documents. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process.
Related
symantec
symantec
Microsoft Windows CVE-2018-0761 Information Disclosure Vulnerability
2018-02-13 00:00:00
mscve
mscve
Windows EOT Font Engine Information Disclosure Vulnerability
2018-02-13 08:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows EOT Font Engine Information Disclosure (CVE-2018-0761)
2018-02-25 00:00:00
cvelist
cvelist
prion
prion
Information disclosure
2018-02-15 02:29:00
Information disclosure
2018-02-15 02:29:00
Information disclosure
2018-02-15 02:29:00
nvd
nvd
cve
cve
kaspersky
kaspersky
KLA11200 Multiple vulnerabilties in Microsoft Products (ESU)
2018-02-13 00:00:00
mskb
mskb
February 13, 2018âKB4074587 (Security-only update)
2018-02-13 08:00:00
February 13, 2018âKB4074598 (Monthly Rollup)
2018-02-13 08:00:00
nessus
nessus
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4074598)
2018-02-14 00:00:00
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - February 2018
2018-02-13 13:26:00