Another Code Execution Problem courtesy of Microsoft


There were reports that vulnerabilities in the Windows Embedded OpenType (EOT) Font Engine could allow remote code execution. A remote user can cause arbitrary code to be executed on the target user’s system. Same thing from my older post regarding remote code execution, some specially crafted fonts can execute codes and attack security policy on your workstations.



fonts

Web page or document containing a specially crafted EOT Fonts, when loaded by other users, will trigger a buffer overflow and execute arbitrary code on the target system. Font Engines are software used by Operating Systems that converts the information in a TrueType font into a raster image suitable for display on screen or printer. Microsoft announces these problem as critical and that all windows user are advise to updates security patches from their website.

Recommended Articles:

  1. Warning on Powerpoint attachements!
  2. Be careful on downloading video files…
  3. Sneak Preview who will be the Qlick Dropper for March 2009
  4. Blooth Tooth Hands-free Calling now on Cars
  5. March 2009 Qlick Dropper
Be Sociable, Share!

Jhong Medina

Hi, I'm Jhong Medina, I'm your friendly neighborhood tech blogger. Please feel free to post your question in any of my topics. Hope you can join and share your ideas, too.

Website - Twitter - Facebook - More Posts


SocialTwist Tell-a-Friend

Switch to our mobile site

Posted in News and Events | 13 Comments »
  • http://myunrevealedthoughts.blogspot.com/ MinnieRunner

    Thanks for sharing this one Jhong.

    Just wanted to share, I once dreamed of becoming an Ethical Hacker :P

  • http://myunrevealedthoughts.blogspot.com/ minniemadz

    Thanks for sharing this one Jhong.

    Just wanted to share, I once dreamed of becoming an Ethical Hacker :P

  • http://qlickblogs.blogspot.com jhongmed

    So be careful in downloading fonts from websites. I would recomend http://www.dafont.com, I’ve been using fonts from that site. I think it’s pretty safe to download fonts from that site.

  • http://qlickblogs.blogspot.com jhongmed

    So be careful in downloading fonts from websites. I would recomend <a href=”http://www.dafont.com”>dafont.com , I've been using fonts from that site. I think it's pretty safe to download fonts from that site.

  • Anonymous

    thanks for your concern on my grandma’s condition. appreciate it a lot. best wishes!

    • http://qlickblogs.blogspot.com jhongmed

      No problem bro, picturing the emergency room, the wards room, the patient’s rest room I really feel uncomfortable by just imagining it. Hope she get well soon. Thanks again.

  • eternally

    thanks for your concern on my grandma's condition. appreciate it a lot. best wishes!

  • http://qlickblogs.blogspot.com jhongmed

    No problem bro, picturing the emergency room, the wards room, the patient's rest room I really feel uncomfortable by just imagining it. Hope she get well soon. Thanks again.

  • Anonymous

    Jhong,

    I would love to learn all of these tricks! Well, not really tricks but more on precautions. If there are people who can hack you (sounds funny), there are those who can defend you from them, right?

    Z

    • http://qlickblogs.blogspot.com jhongmed

      Yes that’s right Doc Z. Sure I’ll keep you posted. Thanks for the comment.

  • zorlone

    Jhong,

    I would love to learn all of these tricks! Well, not really tricks but more on precautions. If there are people who can hack you (sounds funny), there are those who can defend you from them, right?

    Z

  • http://qlickblogs.blogspot.com jhongmed

    Yes that's right Doc Z. Sure I'll keep you posted. Thanks for the comment.

  • http://qlickblogs.blogspot.com jhongmed

    Yes that's right Doc Z. Sure I'll keep you posted. Thanks for the comment.