MS15-078: Vulnerability in Microsoft Font Driver Could Allow Remote Code Execution (3079904)
High Nessus Plugin ID 84882
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is affected by a remote code execution vulnerability in the Adobe Type Manager Library due to improper handling of OpenType fonts. A remote attacker can exploit this vulnerability by convincing a user to open a document or visit a website containing specially crafted OpenType fonts, resulting in the execution of arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Windows Vista, 2008, 7, 2008 R2, 8, RT, 2012, 8.1, RT 8.1, 2012 R2, and 10.