Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a crafted name table, aka "Embedded OpenType Font Integer Overflow Vulnerability."
Vector
NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
Microsoft Windows Server 2008 Service Pack 2 for Itanium-Based Systems
Microsoft Windows Vista x64 (64-bit)
Microsoft Windows Vista Service Pack 1 x64 (64-bit)
Microsoft Windows Vista Service Pack 2 x64 (64-bit)
Microsoft Windows Vista Service Pack 1 (initial release)
Microsoft Windows Vista Service Pack 2
Microsoft Windows XP Service Pack 2
Microsoft Windows xp Sp2 Professional x64 (not an official CPE)
Microsoft Windows XP Service Pack 3
Microsoft Windows server 2008 Sp2 X32 (not an official CPE)
Microsoft Windows server 2008 X32 (not an official CPE)
Microsoft Windows Server 2008 x64 (64-bit)
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2008 Service Pack 2 x64 (64-bit)
Microsoft Windows 2000 Service Pack 4
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| MS09-029 | |||
| 1022543 | |||
| ADV-2009-1887 | |||
| TA09-195A |