1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: MS OpenType Font CVE-2013-1291

Attack: MS OpenType Font CVE-2013-1291

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a vulnerability in parsing OpenType Fonts which may result in a Denial of Service.

Additional Information

Microsoft Windows is prone to a remote denial-of-service vulnerability. Specifically, the issue occurs when the 'win32k.sys' kernel-mode driver parses a specially crafted OpenType font.

Successful exploits will allow attackers to cause the affected computer to stop responding and reboot, resulting in a denial-of-service condition.

Affected

  • Microsoft Windows XP Service Pack 3
  • Microsoft Windows Vista Service Pack 2
  • Microsoft Windows Server 2003/2008
  • Microsoft Windows 7
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube