CVE-2016-7256
CVE-2016-7256
In short
A vulnerability in Windows font handling allows attackers to run malicious code on your computer by tricking you into visiting a specially crafted website. The flaw is in how Windows processes certain font files.
Technical detail
The atmfd.dll font library in affected Windows versions fails to properly validate OpenType font structures, allowing remote code execution through a web vector. An attacker crafts a malicious font file embedded in a website; when a victim visits the site, the font processing triggers memory corruption leading to arbitrary code execution with the privileges of the affected process.
Summary generated and translated by AI from the official description.
atmfd.dll in the Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Open Type Font Remote Code Execution Vulnerability."
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-132https://twitter.com/da5ch0/status/820161895269277696https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-7256http://www.securityfocus.com/bid/94156http://www.securitytracker.com/id/1037243