Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Deadly Windows, Reader font bugs can lead to full system compromise

Deadly Windows, Reader font bugs can lead to full system compromise

2015/06/24

Help Net Security - (International) A security engineer with Google Project Zero shared the discovery of 15 flaws in font engines used by Microsoft Windows, Adobe Reader, and other popular software that could allow an attacker to compromise systems in a variety of ways including creating an exploit chain leading to a full-system compromise. All of the reported vulnerabilities have been patched in recent updates.

Source: http://www.net-security.org/secworld.php?id=18549

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:33