National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2015-2426

Change History

Modified Analysis - 7/21/2015 11:11:48 AM

Action Type Old Value New Value
Added CWE
CWE-119
Added CVSS V2
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Changed Reference Type
http://blog.trendmicro.com/trendlabs-security-intelligence/a-look-at-the-open-type-font-manager-vulnerability-from-the-hacking-team-leak/ No Types Assigned
http://blog.trendmicro.com/trendlabs-security-intelligence/a-look-at-the-open-type-font-manager-vulnerability-from-the-hacking-team-leak/ Exploit
Changed Reference Type
http://technet.microsoft.com/security/bulletin/MS15-078 No Types Assigned
http://technet.microsoft.com/security/bulletin/MS15-078 Advisory, Patch
Added CPE Configuration
Configuration 1
     OR
          *cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_7:-:sp1:x64:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_7:-:sp1:x86:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_8.1:-:-:-:*:-:-:x64:*
          *cpe:2.3:o:microsoft:windows_8.1:-:-:-:*:-:-:x86:*
          *cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:x64:*
          *cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:x86:*
          *cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_server_2012:r2:-:-:*:datacenter:*:*:*
          *cpe:2.3:o:microsoft:windows_server_2012:r2:-:-:*:essentials:*:*:*
          *cpe:2.3:o:microsoft:windows_server_2012:r2:-:-:*:standard:*:*:*
          *cpe:2.3:o:microsoft:windows_rt:-:gold:*:*:*:*:*:*
          *cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
Changed Reference Type
http://www.kb.cert.org/vuls/id/103336 US Govt Resource
http://www.kb.cert.org/vuls/id/103336 Advisory, US Govt Resource