Remote Code Execution Vulnerability in Microsoft Windows Font Library
CVE-2015-6108

Currently unrated

Key Information:

Vendor

Microsoft
Status
Word Viewer
Live Meeting
Lync
Office
Vendor
CVE Published:
9 December 2015

What is CVE-2015-6108?

A vulnerability exists in the Windows font library that enables remote attackers to execute arbitrary code by crafting malicious embedded fonts. This flaw affects a wide range of Microsoft products, including various versions of Windows and Office applications. Successful exploitation of this vulnerability could lead to a complete compromise of the affected system, allowing unauthorized access and control. Users are advised to apply security patches and updates provided by Microsoft to mitigate the risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securitytracker.com/id/1034333
vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id/1034331
vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS

EPSS Score

44% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.