CVE-2016-7256βMicrosoft Windows Open Type Font Remote Code Execution Vulnerability
PUBLISHEDvulnerability record
2022-05-25 Β· last modified June 21, 2025
Metadata
Vulnerability Name
Microsoft Windows Open Type Font Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.