virus logo Intrusion Prevention

MS.Windows.Embedded.OpenType.Font.Engine.Memory.Corruption

description-logoDescription

Embedded OpenType (EOT) fonts are a compact form of OpenType fonts designed by Microsoft for use as embedded fonts on web pages. Microsoft released security bulletin MS10-001 to address one vulnerability in Microsoft Embedded OpenType Font Engine.
Integer overflow in the Embedded OpenType (EOT) Font Engine (t2embed.dll) in Microsoft Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code via compressed data that represents a crafted EOT font, aka "Microtype Express Compressed Fonts Integer Flaw in the LZCOMP Decompressor Vulnerability." (CVE-2010-0018)

affected-products-logoAffected Products

Microsoft Windows 2000 Service Pack 4
Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2
Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
Windows 7 for 32-bit Systems
Windows 7 for x64-based Systems
Windows Server 2008 R2 for x64-based Systems
Windows Server 2008 R2 for Itanium-based Systems

Impact logoImpact

The vulnerability could allow emote attackers to gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Please download and apply patches as instructed in
http://www.microsoft.com/technet/security/Bulletin/MS10-001.mspx
For FortiGate IPS user, turning on the following IPS signatures can prevent exploitation of these vulnerabilities.
MS.Embedded.OpenType.Font.Engine.Remote.Memory.Corruption
MS.Embedded.OpenType.Font.Engine.Memory.Corruption

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-10-12 16.941 Name:MS.
Embedded.
OpenType.
Font.
Engine.
Memory.
Corruption:MS.
Windows.
Embedded.
OpenType.
Font.
Engine.
Memory.
Corruption
ID 18111
Created Mar 09, 2010
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2010-0018
Exploit Prediction Score 95.83%
Default Action drop
Active
Affected OS Windows
Affected App Other