English     Français     Español     Deutsch     Italiano     Português
Themes
New fonts
Authors
Top
Forum
FAQ
Submit a font
Tools

 

Forum

1 post

Posts by gstunts

Forum: General discussion
gstunts
Jan 14, 2016 at 07:25  [reply]  How do I know a font does not have a virus?

Menhir said  
To be active, a virus need to be executed, from an executable file, a file that include program or macro or the boot of a file system.

Font don't include this possiblities.
To my knowledge, font can't be infected with a virus (like all files) but can't transmit a virus because this virus can't be activate.

Ah, actually, a true type font can contain a virus and one that directly exploits vulnerabilities in the Windows Kernel. Take a look at https://threatpost.com/of-truetype-font-vulnerabilities-and-the-windows-kernel/101263/ which states:

"Attacks like these are executed via an embedded malicious font file dropped into an Office document, such as a Word file. Once the user opens the malicious file—delivered either via a spear phishing email or over the Web—the exploit targets a vulnerability in kernel-mode drivers that improperly handle malicious TrueType font files."

So the question remains for dafont: Do you actively inspect your fonts for malicious code in your fonts?

G.



All times are CET. The time is now 17:24
 

Cookies  -  Privacy Policy  -  Contact
Links:  On snot and fonts