|CVSS SCORE||9.3, (AV:N/AC:M/Au:N/C:C/I:C/A:C)|
The specific flaw exists within the handling of TrueType fonts. The issue lies in the handling of TTF files with an overly large LookupCount. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the process.
Oracle has issued an update to correct this vulnerability. More details can be found at: