microsoft windows-server-2012 CVE-2016-7256 vulnerability in Microsoft Products
Published on November 10, 2016

product logo product logo
atmfd.dll in the Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Open Type Font Remote Code Execution Vulnerability."

Vendor Advisory Vendor Advisory NVD

Known Exploited Vulnerability

This Microsoft Windows Open Type Font Remote Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.

The following remediation steps are recommended / required by June 15, 2022: Apply updates per vendor instructions.

Vulnerability Analysis

CVE-2016-7256 is exploitable with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 2.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.


Products Associated with CVE-2016-7256

You can be notified by stack.watch whenever vulnerabilities like CVE-2016-7256 are published in these products:

Microsoft Windows Server 2012
 
Microsoft Windows 8.1
 
Microsoft Windows Server 2016
 
Microsoft Windows Server 2008
 
Microsoft Windows 7
 
Microsoft Windows Rt 8 1
 
Microsoft Windows Vista
 
Microsoft Windows 10
 
Microsoft Windows 10 1511
 
Microsoft Windows 10 1507
 

What versions are vulnerable to CVE-2016-7256?