Microsoft Security Bulletin MS15-078 – Critical

MS15-078 Vulnerability in Microsoft Font Driver Could Allow Remote Code Execution (3079904)
OpenType Font Driver Vulnerability – CVE-2015-2426

Affected software

  • Windows Server 2012 R2 and RTM
  • Windows Server 2008 R2 SP1 (x64 and Itanium-based Systems)
  • Windows Server 2008 SP2 (x64, x86 and Itanium-based Systems)
  • Windows 8.1 and 8 (RTM)
  • Windows RT 8.1 and RT
  • Windows 7
  • Windows Vista SP2

Note: For Windows Server, affects either GUI or Server Core Installations

All software listed are rated as Critical – Remote Code Execution.

See security bulletin for workaround or consult KB3079904 for patch download instructions.


A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts. An attacker who successfully exploited this vulnerability could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.