Sign in
Security Research & Defense
Information from Microsoft about vulnerabilities, mitigations and workarounds, active attacks, security research, tools and guidance
Connect
Postings are provided "AS IS" with no warranties, and confers no rights.
Get alerts when we update our blog!
Tags
.NET Framework
ActiveX
Adobe
ATL
Attack
Attack Surface Reduction
Attack Vector
authentication bypass
AutoPlay
AutoRun
CanSecWest
classid
clsid
COM
Defense-in-depth
DEP
detection
disassembly
dns
EMET
Exploitability
exploitation
FixIt
Font
full-disclosure
gdiplus
GS
HTML
ICMP
IE
IGMP
IIS
Internet Explorer (IE)
ISATAP
kernel
Killbit
malware
Man-in-the-Middle
Microsoft Office
Mitigations
ModSecurity
MS08-001
MS08-067
MS09-032
MS09-034
MS09-035
MS09-056
MS09-061
MS09-062
MS09-063
MS09-064
MS09-065
MS12-043
MSHTML
msmq
msvidctl
MSXML
MSXML5
multicast group
netmon
network
network capture
network protocol
NTLM
Open XML
phoenix bit
PKI
ProbeForRead
ProbeForWrite
protocol handlers
quartz.dll
rating
registry
Risk Asessment
RPC
safe for initialization
safe for scripting
Schannel
Security Bulletin
Security Science
Security Tools
security zones
SharePoint
signing
SMB
spoofing
SQL
SQL Injection
timing attack
TLS
tools
Visual Studio
win32k.sys
Windows Media components
WINS
Workarounds
XBAP
XSS
XSS Filter
Zero-Day Exploit
Browse by Tags
TechNet Blogs
>
Security Research & Defense
>
All Tags
>
ttf
Tagged Content List
Blog Post:
Font Directory Entry Parsing Vulnerability In win32k.sys
swiat
MS09-065 addresses a vulnerability (CVE-2009-2514) in the font parsing subsystem of win32k.sys. If not addressed, this vulnerability could allow an attacker to bluescreen (DoS) the machine (best case scenario) or run code of his/her choice, possibly in the context of the kernel (worst case scenario)...
on
10 Nov 2009
Page 1 of 1 (1 items)