Buffer Overflow Vulnerability in Adobe Type Manager Library in Microsoft Products
CVE-2015-2510

Currently unrated

Key Information:

Vendor: Microsoft
Status: Lync; Office; Live Meeting Console; Windows Vista
Vendor: CVE Published:; 9 September 2015

Summary

A buffer overflow vulnerability exists in the Adobe Type Manager Library within several Microsoft products, enabling attackers to exploit specially crafted OpenType fonts to execute arbitrary code. This could lead to unauthorized actions and system compromise if not mitigated. Affected systems include various versions of Windows and Office applications, demonstrating the necessity for prompt updates and security patches.

References

http://www.securitytracker.com/id/1033485

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securitytracker.com/id/1033501

vdb-entryx_refsource_SECTRACK

EPSS Score

61% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 9, 2015
Vulnerability Reserved
Mar 19, 2015