A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1419.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1456 | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-19-986/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-11-12 11:15
Updated : 2020-08-24 10:37
NVD link : CVE-2019-1456
Mitre link : CVE-2019-1456
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
microsoft
- windows_7
- windows_server_2016
- windows_rt_8.1
- windows_server_2019
- windows_8.1
- windows_10
- windows_server_2008
- windows_server_2012