OpenType Font Driver Vulnerability

Determine if Adobe Type Manager Font Driver is disabled (https://technet.microsoft.com/en-us/library/security/ms15-078):

Query

select * from registry where path like 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\%' AND name = 'DisableATMFD' AND data != '1';

Additional Query Info

• Version: 2.2.1
• Interval: 3600

JSON

{
  "queries": {
    "OpenType Font Driver Vulnerability": {
      "query": "select * from registry where path like 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\%' AND name = 'DisableATMFD' AND data != '1';",
      "interval": "3600",
      "platform": "",
      "version": "2.2.1",
      "description": "Determine if Adobe Type Manager Font Driver is disabled (https://technet.microsoft.com/en-us/library/security/ms15-078)",
      "value": ""
    }
  }
}