MS traces Duqu zero-day to font parsing in win32k

Slashdot

+ - MS traces Duqu zero-day to font parsing in win32k-> 0

Submitted by

yuhong

on Friday November 04, 2011 @02:05AM

yuhong writes "MS has traced the Duqu zero-day to a vulnerability in font parsing in win32k. Many file formats like HTML, Office, and PDF support embedded fonts, and in NT4 and later fonts are parsed in kernel mode! Other possible attack vectors for example include web pages visited using web browsers that support embedded fonts without the OTS font sanitizer (which recent versions of Firefox and Chrome has adopted)."
Link to Original Source

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

MS traces Duqu zero-day to font parsing in win32k

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

"We shall reach greater and greater platitudes of achievement." -- Richard J. Daley

MS traces Duqu zero-day to font parsing in win32k More Login

MS traces Duqu zero-day to font parsing in win32k