EIP-2026-115634

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115634. PoCs published by Google Security Research.

AI-analyzed exploit summary The writeup describes multiple memory corruption vulnerabilities in AFDKO (Adobe Font Development Kit for OpenType) due to incorrect handling of dynamic arrays, leading to potential NULL pointer dereferences or crashes. These issues are triggered by malformed OpenType variable fonts and can be exploited through Microsoft Edge's printing functionality.

Description

Microsoft DirectWrite / AFDKO - NULL Pointer Dereferences in OpenType Font Handling While Accessing Empty dynarrays

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textdoswindows

https://www.exploit-db.com/exploits/47102

View Code ZIP pw:eip

The writeup describes multiple memory corruption vulnerabilities in AFDKO (Adobe Font Development Kit for OpenType) due to incorrect handling of dynamic arrays, leading to potential NULL pointer dereferences or crashes. These issues are triggered by malformed OpenType variable fonts and can be exploited through Microsoft Edge's printing functionality.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: AFDKO (Adobe Font Development Kit for OpenType) in Microsoft DirectWrite (Windows 10 1709 and later)

No auth needed

Prerequisites: Malformed OpenType variable font file · User interaction (printing a webpage in Microsoft Edge)

MITRE ATT&CK

T1499.004 - Application or System Exploitation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Microsoft DirectWrite / AFDKO - NULL Pointer Dereferences in OpenType Font Handling While Accessing Empty dynarrays

Exploitation Summary

Description

Exploits (1)

Details