Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2015-6103

Published: 11/11/2015 Updated: 17/05/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Windows 10

Vulnerability Summary

The Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 allows remote malicious users to execute arbitrary code via a crafted embedded font, aka "Windows Graphics Memory Remote Code Execution Vulnerability," a different vulnerability than CVE-2015-6104.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows 10 -

microsoft windows 10 1511

microsoft windows rt -

microsoft windows 7 -

microsoft windows server 2008 r2

microsoft windows server 2008 -

microsoft windows server 2012 -

microsoft windows 8.1 -

microsoft windows rt 8.1 -

microsoft windows server 2012 r2

microsoft windows 8 -

microsoft windows vista -

Exploits

Exploit DB: Microsoft Windows Kernel - 'win32k.sys' Malformed OS/2 Table TTF Font Processing Pool-Based Buffer Overflow (MS15-115)
Source: codegooglecom/p/google-security-research/issues/detail?id=506 We have encountered a number of Windows kernel crashes in the win32ksys driver while processing a specific corrupted TTF font file The cleanest stack trace we have acquired, which might also indicate where the pool corruption takes place and/or the root cause of the ...

References

CWE-20https://www.exploit-db.com/exploits/38714/http://packetstormsecurity.com/files/134397/Microsoft-Windows-Kernel-Win32k.sys-TTF-Font-Processing-Buffer-Overflow.htmlhttps://code.google.com/p/google-security-research/issues/detail?id=506http://www.securitytracker.com/id/1034114https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-115https://nvd.nist.govhttps://www.exploit-db.com/exploits/38714/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook