Severity Rating: Critical
Revision Note: V1.1 (November 13, 2012): Corrected vulnerability title and FAQ entries for CVE-2012-2897. This is an informational change only.
Summary: This security update resolves two privately reported vulnerabilities and one public vulnerability in Microsoft Windows. The most severe of these vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a malicious webpage that embeds TrueType font files. An attacker would have to convince users to visit the website, typically by getting them to click a link in an email message that takes them to the attacker’s website.This security update is rated Critical for all supported releases of Microsoft Windows. For more information, see the subsection, Affected and Non-Affected Software, in this section.
Powered by WPeMatico