HTTP: Embedded Malformed OpenType Font Engine Remote Code Execution (1)

This signature detects attempts to exploit a known vulnerability against the OpenType Font Engine. A successful attack can lead to arbitrary code execution.

Extended Description

Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote attackers to execute arbitrary code via a crafted table in an embedded font, aka "Embedded OpenType Font Integer Overflow Vulnerability."

Affected Products

Microsoft windows_vista

References

BugTraq: 43775

CVE: CVE-2010-1883

Short Name
HTTP:STC:DL:OTF-FONT-INT-1
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
(1) CVE-2010-1883 Code Embedded Engine Execution Font Malformed OpenType Remote bid:43775
Release Date
12/21/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3659
False Positive
Unknown
Vendors

Microsoft

CVSS Score

9.3

Found a potential security threat?