CVE-2010-0018
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-0018
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Integer overflow in the Embedded OpenType (EOT) Font Engine (t2embed.dll) in Microsoft Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote attackers to execute arbitrary code via compressed data that represents a crafted EOT font, aka "Microtype Express Compressed Fonts Integer Flaw in the LZCOMP Decompressor Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows EOT字体引擎整数溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Microsoft Windows的Embedded OpenType (EOT)字体引擎(t2embed.dll)解压特制EOT字体的方式存在整数溢出漏洞。如果用户使用可渲染EOT字体的客户端应用(如Internet Explorer、PowerPoint或Word)查看了包含恶意EOT内数据的内容时,可能触发内存访问异常或执行任意指令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-0018
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-0018
Please Login to view more intelligence information
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-001vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8324vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2010-0018
Same Patch Batch · n/a · 2010-01-13 · 50 CVEs total
| CVE-2010-0067 | Oracle Application Server Containers for J2EE组件未明安全漏洞 | |
| CVE-2010-0074 | Oracle BEA WebLogic Server组件数据可用性漏洞 | |
| CVE-2010-0078 | Oracle WebLogic Server组件 | |
| CVE-2010-0079 | Oracle BEA Product Suite JRockit组件存在多个漏洞 | |
| CVE-2010-0080 | Oracle PeopleSoft Enterprise HCM系统eProfile组件安全漏洞 | |
| CVE-2010-0279 | BTS-GI Read excel 'upload.php'无限制文件上传漏洞 | |
| CVE-2009-4491 | Acme thttpd非打印字符溢出序列的HTTP请求任意文件执行和重写漏洞 | |
| CVE-2010-0077 | Oracle 2010年1月更新修复多个E-Business套件漏洞 | |
| CVE-2010-0069 | Oracle WebLogic Server 未明数据的机密性漏洞 | |
| CVE-2010-0068 | Oracle WebLogic Server 未明数据的机密漏洞 | |
| CVE-2010-0070 | Oracle Application Server Containers for J2EE组件未明数据完整性漏洞 | |
| CVE-2010-0066 | Oracle Application Server Access Manager Identity Server组件未明安全漏洞 | |
| CVE-2009-3416 | Oracle E-Business Suite Oracle Application Object Library组件安全漏洞 | |
| CVE-2009-3415 | Oracle 2010年1月更新修复Oracle Database多个安全漏洞 | |
| CVE-2009-3414 | Oracle Spatial组件未明安全漏洞 | |
| CVE-2009-3413 | Oracle Spatial组件未明漏洞 | |
| CVE-2009-3412 | Oracle Unzip组件未明漏洞 | |
| CVE-2009-3411 | Oracle Data Pump组件未明漏洞 | |
| CVE-2009-3410 | Oracle RDBMS组件未明漏洞 | |
| CVE-2009-1996 | Oracle Logical Standby组件未明漏洞 |
Showing top 20 of 50 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list - CVE-2026-8249
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8248
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han
V. Comments for CVE-2010-0018
No comments yet