CVE-2012-0159
published 2012-05-09CVE-2012-0159: Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview; Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Silverlight 4 before 4.1.10329; and Silverlight 5 before 5.1.10411 allow remote attackers to execute arbitrary code via a crafted TrueType font (TTF) file, aka "TrueType Font Parsing Vulnerability."
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | office | — | — |
| microsoft | office | — | — |
| microsoft | office | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | silverlight | — | — |
| microsoft | windows_8 | — | — |
| microsoft | windows_server_2008 | — | — |
CVSS provenance
nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck9.3CRITICAL