Microsoft Windows and Office Uniscribe Font Parsing Engine Remote Code Execution Vulnerability

Microsoft Windows and Office are prone to a remote code-execution vulnerability when handling crafted font data.

An attacker can exploit this issue by enticing an unsuspecting user to open a malicious file or webpage. A successful exploit may allow arbitrary code to run in the context of the currently logged-in user. Failed attack attempts may result in a denial-of-service condition.


 

Privacy Statement
Copyright 2010, SecurityFocus