Navigation section
embedded fonts
About this tag
The embedded fonts tag on WindowsForum.com covers security vulnerabilities in Microsoft Windows related to the processing of embedded OpenType (EOT) fonts. Discussions focus on critical remote code execution flaws in the Microsoft Font Driver and Embedded OpenType Font Engine, as disclosed in security bulletins MS15-078, MS13-060, MS10-001, and MS10-076. These vulnerabilities could be exploited when a user opens a specially crafted document or visits a webpage containing malicious embedded fonts, potentially allowing an attacker to gain full control of the system. The tag content emphasizes the importance of applying security updates to mitigate these risks.
-
MS15-078 - Critical: Vulnerability in Microsoft Font Driver Could Allow Remote Code...
Severity Rating: Critical Revision Note: V1.0 (July 20, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that...- News
- Thread
- 2015 bulletin critical cybersecurity documents execution exploit extended security updates font driver microsoft ms15-078 opentype patch remote code execution revision technology vulnerability webpage windows
- Replies: 0
- Forum: Security Alerts
-
MS13-060 - Critical : Vulnerability in Unicode Scripts Processor Could Allow Remote Code...
Severity Rating: Critical Revision Note: V1.0 (August 13, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Unicode Scripts Processor included in Microsoft Windows. The vulnerability could allow remote code execution if a user viewed a...- News
- Thread
- admin rights application attack critical documents execution exploitation extended security updates microsoft ms13-060 opentype privately reported remote code execution system impact unicode user account user rights vulnerability webpage
- Replies: 0
- Forum: Security Alerts
-
MS10-001: Vulnerability in the Embedded OpenType Font Engine could allow remote code execution
Resolves a vulnerability in Windows that could allow remote code execution if a user viewed content rendered in a specially crafted Embedded OpenType (EOT) font in any of the three client applications that can render EOT fonts. More...- News
- Thread
- client software eot fonts execution microsoft opentype patch remote access security update vulnerability windows
- Replies: 0
- Forum: Knowledge Base (KB)
-
MS10-076 - Critical: Vulnerability in the Embedded OpenType Font Engine Could Allow Remote Code Exec
Severity Rating: Critical - Revision Note: V1.0 (October 12, 2010): Bulletin published.Summary: This security update resolves a privately reported vulnerability in a Microsoft Windows component, the Embedded OpenType (EOT) Font Engine. The vulnerability could allow remote code execution. An...- News
- Thread
- critical exploit ms10-076 remote code execution security system control user rights vulnerability windows update
- Replies: 0
- Forum: Security Alerts