← ExploitWatch
HomeExploited Vulnerabilities

CVE-2016-7256 — Actively Exploited: Windows (Microsoft)

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.

CVE IDCVE-2016-7256
VendorMicrosoft
ProductWindows
Vulnerability nameMicrosoft Windows Open Type Font Remote Code Execution Vulnerability
Date added2022-05-25
Remediation due2022-06-15
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionA remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →