Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:STC:DL:OPEN-TYPE-RCE |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Open Type Font Parsing Remote Code Execution |
Release Date |
2012/12/09 |
Update Number |
2209 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Open Type Font Parsing Remote Code Execution
This signature detects attempts to exploit a known vulnerability in Open Type Font. A successful attack can lead to a arbitrary remote code execution within the context of the current user.
Extended Description
The OpenType Font (OTF) driver in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allows remote attackers to execute arbitrary code via a crafted OpenType font file, aka "OpenType Font Parsing Vulnerability."
Affected Products
- Microsoft windows_2003_server *
- Microsoft windows_7 -
- Microsoft windows_7 *
- Microsoft windows_8 -
- Microsoft windows_rt -
- Microsoft windows_server_2003 *
- Microsoft windows_server_2008 -
- Microsoft windows_server_2008 *
- Microsoft windows_server_2008 r2
- Microsoft windows_server_2012 -
- Microsoft windows_vista *
- Microsoft windows_xp -
- Microsoft windows_xp *
References
- CVE: CVE-2012-2556