Core Security Technologies Advisory – While investigating the OpenType Compact Font Format vulnerability disclosed in MS10-037, Diego Juarez discovered another kernel bug in the parsing of OTF files. Loading a malformed OpenType font can cause the entire system to crash. The vulnerability could be used locally by attackers with access to an unprivileged account to elevate privileges to those of a System Administrator.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/94684/CORE-2010-0624.txt
Source: https://packetstormsecurity.com/files/94684/Core-Security-Technologies-Advisory-2010.0624.html