Rapid7 Vulnerability & Exploit Database

MS15-044: Vulnerabilities in Microsoft Font Drivers Could Allow Remote Code Execution (3057110) [Silverlight for Mac]

Back to Search

MS15-044: Vulnerabilities in Microsoft Font Drivers Could Allow Remote Code Execution (3057110) [Silverlight for Mac]

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
05/12/2015
Created
07/25/2018
Added
05/12/2015
Modified
12/08/2015

Description

This security update resolves vulnerabilities in Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Microsoft Lync, and Microsoft Silverlight. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that contains embedded TrueType fonts.

Solution(s)

  • silverlight-for-mac-upgrade-5_1_40416_0

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;