| Patch Name : |
Windows6.0-SP2-KB972270-x64.msu |
| Patch Description : |
Security Update for Windows Vista for x64-based Systems (KB972270) |
| Bulletin Id : |
MS10-001 |
| Bulletin Title : |
Vulnerability in the Embedded OpenType Font Engine Could Allow Remote Code Execution (972270) |
| KnowledgeBase : | 972270 |
| Severity : |
Low |
| Location Path : | Windows6.0-SP2-KB972270-x64.msu |
| Bulletin Summary: |
The vulnerability could allow remote code execution if a user viewed content rendered in a specially crafted Embedded OpenType (EOT) font in client applications that can render EOT fonts, such as Microsoft Internet Explorer, Microsoft Office PowerPoint, or Microsoft Office Word. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
| Superceding Bulletin Id : |
None |
| Patch Release Date : |
Jan 12, 2010 |
| CVE Id : | CVE-2010-0018 |
| Affected Product Information |
|
| Product Name |
Service Pack Name |
| Windows Vista Business Edition (x64) | Windows Vista SP2 (x64) |
| Windows Vista Ultimate Edition (x64) | Windows Vista SP2 (x64) |
| Windows Vista Enterprise Edition (x64) | Windows Vista SP2 (x64) |
|
| File changes |
|
| File Path |
Version |
| $x64$%windir%\system32\Fontsub.dll | 6.0.6002.18124 |
|
| Registry changes |
|
| Registry Path |
Key Name |
Key Value |
| No records found | | |
