[28472] in bugtraq
Re[2]: Opentype font file causes Windows to restart.
daemon@ATHENA.MIT.EDU (Andrew)
Sun Jan 19 23:40:31 2003
Date: Wed, 8 Jan 2003 12:33:56 +1300
From: Andrew <aconnell@xtra.co.nz>
Reply-To: Andrew <aconnell@xtra.co.nz>
Message-ID: <103252651233.20030108123356@xtra.co.nz>
To: "Philippe Letrait" <philippe.letrait@laposte.net>
In-Reply-To: <002e01c2b696$72bfb070$470a0a0a@philzed.zed>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I have not yet investigated the problem thoroughly, but as far as I'm
aware it's caused by complicated outlines -- the font file contains
only 1 character, with about 1000 points in it.
If anyone wishes to examine the file in depth, I'd recommend using TTX
(http://www.letterror.com/code/ttx/ ) - it does font<->XML conversion
and makes it easy to see all the information in the file in human
readable format.
-Andrew
Wednesday, January 8, 2003, 10:48:00 AM, you wrote:
PL> I can confirmed this.
PL> - Reboot immediately.
PL> When logged with administrative rights on a Windows XP Professional FR
PL> (without service pack)
PL> - Blue screen of death (BSOD), computer shows a
PL> "PAGE_FAULT_INNONPAGED_AREA".
PL> When logged as a normal user on a Windows 2000 Advanced Server SP3 US.
PL> I'd like to know what is going wong in this file ? and/or
PL> what specific code were added inside ?
PL> Regards,
PL> PhilZ
PL> ----- Original Message -----
PL> From: "Andrew" <aconnell@xtra.co.nz>
PL> To: <bugtraq@securityfocus.com>; <vulnwatch@vulnwatch.org>
PL> Sent: Monday, January 06, 2003 4:36 PM
PL> Subject: Opentype font file causes Windows to restart.
>> Problem
>> -------
>>
>> The attached OpenType font file will cause Windows to restart
>> immediately when the file is opened by the default viewer (fontview).
>> I doubt anyone would suspect a "harmless" little font file of being
>> able to cause such a thing to happen!
>>
>> Software affected
>> -----------------
>> It has been tested on both Windows 2000 and Windows XP with exactly
>> the same result -- an immediate restart. Other versions of Windows
>> are untested.
>>
>> Fix
>> ---
>> No fix known.
>>
>>
>>
>> - Andrew Connell
