Total vulnerabilities in the database
The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT, and .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5, allow remote attackers to execute arbitrary code via a crafted OpenType font (OTF) file, aka "OpenType Font Parsing Vulnerability."
| Software | From | Fixed in |
|---|---|---|
| microsoft / windows_xp | --sp3 | --sp3.x |
| microsoft / windows_server_2008 | r2-sp1 | r2-sp1.x |
| microsoft / windows_7 | --sp1 | --sp1.x |
| microsoft / windows_vista | --sp2 | --sp2.x |
| microsoft / windows_server_2008 | --sp2 | --sp2.x |
| microsoft / windows_server_2003 | --sp2 | --sp2.x |
| microsoft / windows_xp | --sp2 | --sp2.x |
| microsoft / .net_framework | 3.0-sp2 | 3.0-sp2.x |
| microsoft / .net_framework | 3.5 | 3.5.x |
| microsoft / .net_framework | 3.5.1 | 3.5.1.x |
| microsoft / .net_framework | 4.0 | 4.0.x |
| microsoft / .net_framework | 4.5 | 4.5.x |