EIP-2026-115632

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115632. PoCs published by Google Security Research.

AI-analyzed exploit summary This is a detailed technical analysis of a stack underflow vulnerability in AFDKO's Type 2 CharString interpreter, specifically in the handling of instructions like tx_callgrel, tx_rmoveto, tx_vmoveto, tx_hmoveto, and tx_SETWVN. The analysis includes root cause, exploitability assessment, and a proof-of-concept description.

Description

Microsoft DirectWrite / AFDKO - Interpreter Stack Underflow in OpenType Font Handling Due to Missing CHKUFLOW

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textdoswindows

https://www.exploit-db.com/exploits/47091

View Code ZIP pw:eip

This is a detailed technical analysis of a stack underflow vulnerability in AFDKO's Type 2 CharString interpreter, specifically in the handling of instructions like tx_callgrel, tx_rmoveto, tx_vmoveto, tx_hmoveto, and tx_SETWVN. The analysis includes root cause, exploitability assessment, and a proof-of-concept description.

Classification

Writeup 100%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: AFDKO (Adobe Font Development Kit for OpenType)

No auth needed

Prerequisites: A specially crafted OpenType variable font file · User interaction to print the font in an application like Microsoft Edge

MITRE ATT&CK

T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Microsoft DirectWrite / AFDKO - Interpreter Stack Underflow in OpenType Font Handling Due to Missing CHKUFLOW

Exploitation Summary

Description

Exploits (1)

Details