CVE-2015-1671
Revision as of 10:07, 6 August 2015 by Eric.freyssinet (talk | contribs)
MITRE CVE Reference: CVE-2015-1671
Usage
Targetted asset: Microsoft Windows
Exploit kits using this vulnerability/ Exploit kits utilisant cette vulnérabilité:
Botnets using this vulnerability to function/propagate:
- Botnets:
Campaigns using this vulnerability:
- Campaigns:
Packages includingthis vulnerability:
- Packages:
Publications
Author | Editor | Year | |
---|---|---|---|
Kaspersky security bulletin 2015. Overall statistics for 2015 | Maria Garnaeva Jornt van der Wiel Denis Makrushin Anton Ivanov Yury Namestnikov | Kaspersky Securelist | 2015 |
The Windows DirectWrite library, as used in Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2; Office 2007 SP3 and 2010 SP2; Live Meeting 2007 Console; Lync 2010; Lync 2010 Attendee; Lync 2013 SP1; Lync Basic 2013 SP1; Silverlight 5 before 5.1.40416.00; and Silverlight 5 Developer Runtime before 5.1.40416.00, allows remote attackers to execute arbitrary code via a crafted TrueType font, aka "TrueType Font Parsing Vulnerability."