Monday, July 20, 2015

Workaround for a Critical Vulnerability in Windows -CVE-2015-2426



OpenType Font Driver Vulnerability - CVE-2015-2426
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts. An attacker who successfully exploited this vulnerability could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.


Mitigating Factors
Microsoft has not identified any mitigating factors for this vulnerability.



Workarounds
The following workarounds may be helpful in your situation:


Follow this link to implement the workaround:
https://technet.microsoft.com/library/security/MS15-078

No comments:

Post a Comment