Oval Definition:oval:org.cisecurity:def:1405
Revision Date:2016-12-23Version:11
Title:Graphics Component Buffer Overflow Vulnerability – CVE-2015-2510 (MS15-097)
Description:Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, and Live Meeting 2007 Console allows remote attackers to execute arbitrary code via a crafted OpenType font, aka "Graphics Component Buffer Overflow Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2015-2510
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Product(s):Microsoft Live Meeting 2007 Console
Microsoft Lync 2010
Microsoft Lync 2010 Attendee
Microsoft Lync 2013
Microsoft Office 2007
Microsoft Office 2010
Skype for Business 2016
Definition Synopsis
  • OS + vulnerable file version
  • vista/2k8
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND Check vulnerable versions
  • Check if the version of gdiplus.dll is less than 6.0.6002.19466
  • OR Check for LDR
  • Check if the version of gdiplus.dll is less than 6.0.6002.23775
  • AND Check if the version of Gdiplus.dll is greater than or equal to 6.0.6002.23000
  • OR MS Office 2007 SP3 + file version
  • Microsoft Office 2007 SP3 is installed
  • AND Check if the version of ogl.dll is less than 12.0.6728.5000
  • OR MS Office 2010 SP2 + file version
  • Microsoft Office 2010 SP2 is installed
  • AND Check if the version of ogl.dll is less than 14.0.7157.5000
  • OR Lync 2013 + file version
  • Microsoft Lync Basic 2013 SP1 is installed
  • AND Microsoft Lync 2013 SP1 is installed
  • AND Check if the version of lynchtmlconv.exe is less than 15.0.4753.1000
  • OR Skype for Business 2016 + file version
  • Skype for Business 2016 is installed
  • AND Check if the version of lynchtmlconv.exe is less than 16.0.4288.1000
  • OR Lync 2010 + file version
  • Microsoft Lync 2010 is installed
  • AND Check if the version of Communicator.exe is less than 4.0.7577.4478
  • OR Lync 2010 Attendee + file version
  • Lync 2010 Attendee (user level install)
  • Microsoft Lync 2010 Attendee (user level install) is installed
  • AND Check if the version of ogl.dll is less than 4.0.7577.4478
  • OR Lync 2010 Attendee (admin level install)
  • Microsoft Lync 2010 Attendee (admin level install) is installed
  • AND Check if the version of ogl.dll is less than 4.0.7577.4478
  • OR Live Meeting 2007 + file version
  • Microsoft Live Meeting 2007 Console is installed
  • AND Check if the version of Collaborate.dll is less than 8.0.6362.264
    • BACK