Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:STC:DL:MS-FONTMATRIX

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Microsoft Windows OpenType Font Driver Remote Code Execution

Release Date

 2011/04/11

Update Number

 1900

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Microsoft Windows OpenType Font Driver Remote Code Execution


This signature detects attempts to exploit a known vulnerability against Microsoft Windows OpenType Font Driver. A successful attack can lead to arbitrary code execution.

Extended Description

Microsoft Windows is prone to a remote code-execution vulnerability that affects the OpenType Font (OTF) driver. To exploit this issue on Windows 7, Windows Vista, Windows Server 2008, and Windows Server 2008 R2, an attacker must entice an unsuspecting user into visiting a malicious webpage or to open a specially crafted document. To exploit this issue on Windows XP and Windows Server 2003, an attacker requires local access. An attacker can exploit this issue to execute arbitrary code in kernel mode. Successful exploits will completely compromise an affected computer. Failed attempts will result in a denial-of-service condition.

Affected Products

  • Avaya aura_conferencing 6.0 SP1 Standard
  • Avaya aura_conferencing 6.0 Standard
  • Avaya callpilot 4.0
  • Avaya callpilot 5.0
  • Avaya communication_server_1000_telephony_manager 3.0
  • Avaya communication_server_1000_telephony_manager 4.0
  • Avaya meeting_exchange 5.0
  • Avaya meeting_exchange 5.0.0.0.52
  • Avaya meeting_exchange 5.0 SP1
  • Avaya meeting_exchange 5.0 SP2
  • Avaya meeting_exchange 5.1
  • Avaya meeting_exchange 5.1 SP1
  • Avaya meeting_exchange 5.2
  • Avaya meeting_exchange 5.2 SP1
  • Avaya meeting_exchange 5.2 SP2
  • Avaya meeting_exchange-client_registration_server
  • Avaya meeting_exchange-recording_server
  • Avaya meeting_exchange-streaming_server
  • Avaya meeting_exchange-web_conferencing_server
  • Avaya meeting_exchange-webportal
  • Avaya messaging_application_server 4
  • Avaya messaging_application_server 5
  • Microsoft windows 7
  • Microsoft windows_7 Beta
  • Microsoft windows_7 RC
  • Microsoft windows_7_for_32-bit_systems SP1
  • Microsoft windows_7_for_32-bit_systems
  • Microsoft windows_7_for_x64-based_systems SP1
  • Microsoft windows_7_for_x64-based_systems
  • Microsoft windows_7_home_premium
  • Microsoft windows_7_professional
  • Microsoft windows_7_starter
  • Microsoft windows_7_ultimate
  • Microsoft windows_7_xp_mode
  • Microsoft windows_server 2008 R2
  • Microsoft windows_server_2003 Gold
  • Microsoft windows_server_2003 Gold Compute Cluster
  • Microsoft windows_server_2003 Gold Datacenter
  • Microsoft windows_server_2003 Gold Enterprise
  • Microsoft windows_server_2003 Gold Itanium
  • Microsoft windows_server_2003 Gold Standard
  • Microsoft windows_server_2003 Gold Storage
  • Microsoft windows_server_2003 Gold X64
  • Microsoft windows_server_2003 Gold X64-Datacenter
  • Microsoft windows_server_2003 Gold X64-Enterprise
  • Microsoft windows_server_2003 Gold X64-Standard
  • Microsoft windows_server_2003 R2
  • Microsoft windows_server_2003 R2 Compute Cluster
  • Microsoft windows_server_2003 R2 Datacenter
  • Microsoft windows_server_2003 R2 Enterprise
  • Microsoft windows_server_2003 R2 Standard
  • Microsoft windows_server_2003 R2 Storage
  • Microsoft windows_server_2003 R2 X64
  • Microsoft windows_server_2003 R2 X64-Datacenter
  • Microsoft windows_server_2003 R2 X64-Enterprise
  • Microsoft windows_server_2003 R2 X64-Standard
  • Microsoft windows_server_2003 SP1
  • Microsoft windows_server_2003 Sp1 Compute Cluster
  • Microsoft windows_server_2003 SP1 Platform SDK
  • Microsoft windows_server_2003 Sp1 Storage
  • Microsoft windows_server_2003 SP2
  • Microsoft windows_server_2003 Sp2 Compute Cluster
  • Microsoft windows_server_2003 Sp2 Datacenter
  • Microsoft windows_server_2003 Sp2 Enterprise
  • Microsoft windows_server_2003 Sp2 Storage
  • Microsoft windows_server_2003_datacenter_edition SP1
  • Microsoft windows_server_2003_datacenter_edition
  • Microsoft windows_server_2003_datacenter_edition_itanium SP1
  • Microsoft windows_server_2003_datacenter_edition_itanium
  • Microsoft windows_server_2003_datacenter_x64_edition SP2
  • Microsoft windows_server_2003_datacenter_x64_edition
  • Microsoft windows_server_2003_enterprise_edition SP1
  • Microsoft windows_server_2003_enterprise_edition
  • Microsoft windows_server_2003_enterprise_edition_itanium SP1
  • Microsoft windows_server_2003_enterprise_edition_itanium SP2
  • Microsoft windows_server_2003_enterprise_edition_itanium Sp2 Itanium
  • Microsoft windows_server_2003_enterprise_edition_itanium
  • Microsoft windows_server_2003_enterprise_x64_edition SP2
  • Microsoft windows_server_2003_enterprise_x64_edition
  • Microsoft windows_server_2003_itanium SP1
  • Microsoft windows_server_2003_itanium SP2
  • Microsoft windows_server_2003_itanium
  • Microsoft windows_server_2003_r2_datacenter_edition
  • Microsoft windows_server_2003_r2_datacenter_edition_sp1
  • Microsoft windows_server_2003_r2_datacenter_edition_sp2
  • Microsoft windows_server_2003_r2_enterprise_edition
  • Microsoft windows_server_2003_r2_enterprise_edition_sp1
  • Microsoft windows_server_2003_r2_enterprise_edition_sp2
  • Microsoft windows_server_2003_r2_standard_edition
  • Microsoft windows_server_2003_r2_web_edition
  • Microsoft windows_server_2003_standard_edition SP1
  • Microsoft windows_server_2003_standard_edition SP2
  • Microsoft windows_server_2003_standard_edition
  • Microsoft windows_server_2003_standard_x64_edition
  • Microsoft windows_server_2003_web_edition SP1
  • Microsoft windows_server_2003_web_edition SP2
  • Microsoft windows_server_2003_web_edition
  • Microsoft windows_server_2003_x64 SP1
  • Microsoft windows_server_2003_x64 SP2
  • Microsoft windows_server_2008 SP2 Beta
  • Microsoft windows_server_2008 - Sp2 Enterprise X64
  • Microsoft windows_server_2008_datacenter_edition Release Candidate
  • Microsoft windows_server_2008_datacenter_edition SP2
  • Microsoft windows_server_2008_datacenter_edition
  • Microsoft windows_server_2008_enterprise_edition Release Candidate
  • Microsoft windows_server_2008_enterprise_edition SP2
  • Microsoft windows_server_2008_enterprise_edition
  • Microsoft windows_server_2008_for_32-bit_systems SP2
  • Microsoft windows_server_2008_for_32-bit_systems
  • Microsoft windows_server_2008_for_itanium-based_systems R2
  • Microsoft windows_server_2008_for_itanium-based_systems SP2
  • Microsoft windows_server_2008_for_itanium-based_systems
  • Microsoft windows_server_2008_for_x64-based_systems R2
  • Microsoft windows_server_2008_for_x64-based_systems SP2
  • Microsoft windows_server_2008_for_x64-based_systems
  • Microsoft windows_server_2008_r2_datacenter SP1
  • Microsoft windows_server_2008_r2_datacenter
  • Microsoft windows_server_2008_r2_itanium SP1
  • Microsoft windows_server_2008_r2_itanium
  • Microsoft windows_server_2008_r2_x64 SP1
  • Microsoft windows_server_2008_r2_x64
  • Microsoft windows_server_2008_standard_edition - Gold
  • Microsoft windows_server_2008_standard_edition - Gold Datacenter
  • Microsoft windows_server_2008_standard_edition - Gold Enterprise
  • Microsoft windows_server_2008_standard_edition - Gold Hpc
  • Microsoft windows_server_2008_standard_edition - Gold Itanium
  • Microsoft windows_server_2008_standard_edition - Gold Standard
  • Microsoft windows_server_2008_standard_edition - Gold Storage
  • Microsoft windows_server_2008_standard_edition - Gold Web
  • Microsoft windows_server_2008_standard_edition Itanium
  • Microsoft windows_server_2008_standard_edition Release Candidate
  • Microsoft windows_server_2008_standard_edition SP2
  • Microsoft windows_server_2008_standard_edition - Sp2 Hpc
  • Microsoft windows_server_2008_standard_edition - Sp2 Storage
  • Microsoft windows_server_2008_standard_edition - Sp2 Web
  • Microsoft windows_server_2008_standard_edition X64
  • Microsoft windows_server_2008_standard_edition
  • Microsoft windows_vista 1.0
  • Microsoft windows_vista 2.0
  • Microsoft windows_vista 3.0
  • Microsoft windows_vista Business
  • Microsoft windows_vista Business SP1
  • Microsoft windows_vista Business SP2
  • Microsoft windows_vista Enterprise
  • Microsoft windows_vista Enterprise SP1
  • Microsoft windows_vista Enterprise SP2
  • Microsoft windows_vista Home Basic
  • Microsoft windows_vista Home Basic SP1
  • Microsoft windows_vista Home Basic SP2
  • Microsoft windows_vista Home Premium
  • Microsoft windows_vista Home Premium SP1
  • Microsoft windows_vista Home Premium SP2
  • Microsoft windows_vista SP1
  • Microsoft windows_vista SP2
  • Microsoft windows_vista Ultimate
  • Microsoft windows_vista Ultimate SP1
  • Microsoft windows_vista Ultimate SP2
  • Microsoft windows_vista
  • Microsoft windows_vista_business_64-bit_edition SP1
  • Microsoft windows_vista_business_64-bit_edition SP2
  • Microsoft windows_vista_business_64-bit_edition
  • Microsoft windows_vista_enterprise_64-bit_edition SP1
  • Microsoft windows_vista_enterprise_64-bit_edition SP2
  • Microsoft windows_vista_enterprise_64-bit_edition
  • Microsoft windows_vista_home_basic_64-bit_edition SP1
  • Microsoft windows_vista_home_basic_64-bit_edition Sp1 X64
  • Microsoft windows_vista_home_basic_64-bit_edition SP2
  • Microsoft windows_vista_home_basic_64-bit_edition Sp2 X64
  • Microsoft windows_vista_home_basic_64-bit_edition
  • Microsoft windows_vista_home_premium_64-bit_edition SP1
  • Microsoft windows_vista_home_premium_64-bit_edition SP2
  • Microsoft windows_vista_home_premium_64-bit_edition
  • Microsoft windows_vista_ultimate_64-bit_edition SP1
  • Microsoft windows_vista_ultimate_64-bit_edition SP2
  • Microsoft windows_vista_ultimate_64-bit_edition
  • Microsoft windows_vista_x64_edition SP1
  • Microsoft windows_vista_x64_edition SP2
  • Microsoft windows_vista_x64_edition
  • Microsoft windows_xp - Gold 64-Bit-2002
  • Microsoft windows_xp Gold Embedded
  • Microsoft windows_xp - Gold Home
  • Microsoft windows_xp Gold Media Center
  • Microsoft windows_xp Gold Professional
  • Microsoft windows_xp Gold Tablet Pc
  • Microsoft windows_xp - Gold X64
  • Microsoft windows_xp - Sp1 X64
  • Microsoft windows_xp
  • Microsoft windows_xp
  • Microsoft windows_xp_64-bit_edition SP1
  • Microsoft windows_xp_64-bit_edition
  • Microsoft windows_xp_64-bit_edition_version_2003 SP1
  • Microsoft windows_xp_64-bit_edition_version_2003
  • Microsoft windows_xp_embedded SP1
  • Microsoft windows_xp_embedded SP2
  • Microsoft windows_xp_embedded SP3
  • Microsoft windows_xp_embedded
  • Microsoft windows_xp_gold
  • Microsoft windows_xp_home SP1
  • Microsoft windows_xp_home SP2
  • Microsoft windows_xp_home SP3
  • Microsoft windows_xp_home
  • Microsoft windows_xp_media_center_edition SP1
  • Microsoft windows_xp_media_center_edition SP2
  • Microsoft windows_xp_media_center_edition SP3
  • Microsoft windows_xp_media_center_edition
  • Microsoft windows_xp_media_center_edition_2005 SP3
  • Microsoft windows_xp_professional SP1
  • Microsoft windows_xp_professional SP2
  • Microsoft windows_xp_professional SP3
  • Microsoft windows_xp_professional
  • Microsoft windows_xp_professional_x64_edition SP2
  • Microsoft windows_xp_professional_x64_edition SP3
  • Microsoft windows_xp_professional_x64_edition
  • Microsoft windows_xp_service_pack_3
  • Microsoft windows_xp_tablet_pc_edition SP1
  • Microsoft windows_xp_tablet_pc_edition SP2
  • Microsoft windows_xp_tablet_pc_edition SP3
  • Microsoft windows_xp_tablet_pc_edition

References

  • BugTraq: 47179
  • CVE: CVE-2011-0034

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out