CVE-2015-2510

Microsoft Live Meeting Console - Remote Code Execution via Crafted OpenType Font

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-2510. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a memory corruption vulnerability in Microsoft Office 2007 Excel due to lack of bounds checking in the OGL!ValidateBitmapInfo function, leading to an out-of-bounds read or write during bitmap conversion.

Description

Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, and Live Meeting 2007 Console allows remote attackers to execute arbitrary code via a crafted OpenType font, aka "Graphics Component Buffer Overflow Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdoswindows

https://www.exploit-db.com/exploits/38217

View Code ZIP pw:eip

This exploit demonstrates a memory corruption vulnerability in Microsoft Office 2007 Excel due to lack of bounds checking in the OGL!ValidateBitmapInfo function, leading to an out-of-bounds read or write during bitmap conversion.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Office 2007 Excel (12.0.6718.5000)

No auth needed

Prerequisites: Microsoft Office File Validation Add-In disabled · Application Verifier enabled for testing

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1033485

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-097

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1033501

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/38217/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/76593

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1033500

Scores

EPSS 0.7060

EPSS Percentile 98.7%

Details

CWE

CWE-119

Status published

Products (7)

microsoft/live_meeting_console 2007

microsoft/lync 2010 (3 CPE variants)

microsoft/lync 2013 sp1 (2 CPE variants)

microsoft/office 2007 sp3

microsoft/office 2010 sp2

microsoft/windows_server_2008

microsoft/windows_vista

Published Sep 09, 2015

Tracked Since Feb 18, 2026