| Name | atmfd_pool_buffer_underflow |
| CVE | CVE-2015-2387 |
| Exploit Pack | CANVAS |
| Description | ATMFD.dll Pool Buffer Underflow |
| Notes | Repeatability: Infinite Notes: This module exploits a vulnerability on the Adobe Type Manager Font Driver (ATMFD.DLL). While processing a font data there exists a buffer underflow condition, which is caused by a signed number extending. References: http://blog.trendmicro.com/trendlabs-security-intelligence/a-look-at-the-open-type-font-manager-vulnerability-from-the-hacking-team-leak/ Tested on: Windows XP Professional SP3 x86 Windows XP Professional SP2 x64 Windows 7 Professional x86 Windows 7 Professional SP1 x86 Windows 7 Professional SP1 x64 Windows 7 Ultimate SP1 x86 Windows 8.1 Enterprise x86 Windows 8.1 Enterprise x64 VENDOR: Microsoft CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2387 CVE Name: CVE-2015-2387 |
| Learn more about the CANVAS Exploit Pack here: CANVAS |