Microsoft Windows TrueType Font Parsing Remote Code Execution (MS15-010; CVE-2015-0059)

A remote code execution vulnerability exists in the Windows kernel-mode driver (Win32k.sys). The vulnerability is caused when Windows kernel-mode driver improperly handles TrueType fonts. A remote attacker can exploit this issue by enticing a user to open a specially crafted TTF file.

Leave a Reply