Navigation section
cff driver
About this tag
The cff driver tag on WindowsForum.com covers security vulnerabilities in the Windows OpenType Compact Font Format (CFF) driver. Discussions focus on Microsoft security bulletins MS11-007, MS11-032, and MS10-037, which address critical vulnerabilities that could allow remote code execution or elevation of privilege if a user views content rendered in a specially crafted CFF font. The tag includes details about severity ratings, detection changes, and the need for users to apply security updates to protect against attacks that typically require user interaction, such as clicking a link in an email or instant message.
-
MS11-007 - Critical : Vulnerability in the OpenType Compact Font Format (CFF) Driver Could...
Severity Rating: Critical Revision Note: V2.1 (July 9, 2013): Bulletin revised to announce a detection change that excludes Windows 7 language packs from the 2485376 update for Windows XP Professional x64 Edition Service Pack 2. This is a detection change only. Customers who have already...- News
- Thread
- announcement bug fixes cff driver critical detection change email security font format internet safety online threats patch privately reported remote code execution security update user awareness vulnerability windows windows 7 windows xp
- Replies: 0
- Forum: Security Alerts
-
MS11-007 - Critical : Vulnerability in the OpenType Compact Font Format (CFF) Driver Could...
Severity Rating: Critical Revision Note: V2.1 (July 9, 2013): Bulletin revised to announce a detection change that excludes Windows 7 language packs from the 2485376 update for Windows XP Professional x64 Edition Service Pack 2. This is a detection change only. Customers who have already...- News
- Thread
- attack cff driver critical detection email execution fonts messenger ms11-007 opentype patch remote security update user action vulnerability web security windows 7 windows xp
- Replies: 0
- Forum: Security Alerts
-
MS11-007: Vulnerability in the OpenType Compact Font Format CFF driver could allow remote code execu
Resolves a vulnerability in the Windows OpenType Compact Font Format (CFF) driver that could allow remote code execution if a user views content rendered in a specially crafted CFF font. More...- News
- Thread
- cff driver execution font format microsoft patch remote code execution security update vulnerability windows
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS10-037: Vulnerability in the OpenType Compact Font Format (CFF) driver could allow elevation of pr
Resolves a vulnerability in the Windows OpenType Compact Font Format (CFF) driver that could allow elevation of privileges if a user views content that is rendered in a specially crafted CFF font. Link Removed- News
- Thread
- cff driver elevation font format opentype patch privilege security update vulnerability windows
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS11-032 - Critical: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remo
Severity Rating: Critical - Revision Note: V1.0 (April 12, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the OpenType Compact Font Format (CFF) driver. The vulnerability could allow remote code execution if a user views content rendered in...- News
- Thread
- cff driver critical update execution font format opentype remote code execution security user safety vulnerability web attack
- Replies: 0
- Forum: Security Alerts
-
MS11-032 - Critical: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remo
Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in the OpenType Compact Font Format (CFF) driver. The vulnerability could allow remote code execution if a user views content rendered in a specially crafted CFF font. In all cases, an attacker...- News
- Thread
- cff driver critical email security fonts internet safety remote code execution security update vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
MS11-007 - Critical: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remo
Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in the Windows OpenType Compact Font Format (CFF) driver. The vulnerability could allow remote code execution if a user views content rendered in a specially crafted CFF font. In all cases, an...- News
- Thread
- attacker cff driver critical font format opentype remote code execution security update vulnerability windows
- Replies: 0
- Forum: Security Alerts