MS.Windows.TTF.File.CMAP.Table.Integer.Underflow
Description
This indicates an attack attempt to exploit a Remote Code Execution vulnerability in Microsoft Windows.
The vulnerability is due to an error in the Microsoft Windows parser for TrueType fonts. An attacker can exploit this execute arbitrary code within the context of the application via a crafted file.
Affected Products
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS15-130
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |