Microsoft Windows OpenType Font privilege escalation vulnerabilities - MS10-078ID: oval:org.secpod.oval:def:1385 | Date: (C)2011-07-08 (M)2022-04-14 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft security bulletin, MS10-078. The update is required to fix privilege escalation vulnerabilities. Multiple flaws are present in the OpenType Font (OTF) format driver in Microsoft Windows, which is due to improper loading of formatted font. Successful exploitation could allow an attacker to execute arbitrary code with kernel privileges.
Platform: |
Microsoft Windows XP |
Microsoft Windows Server 2003 |