CVE-2015-2460 - Unbreakable Spreadeagle

Description

ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1 and .NET Framework 3.0 SP2 3.5 3.5.1 4 4.5 4.5.1 4.5.2 and 4.6 allows remote attackers to execute arbitrary code via a crafted OpenType font aka \OpenType Font Parsing Vulnerability.\

Reference

https://www.exploit-db.com/exploits/37921/ http://www.securitytracker.com/id/1033238 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-080