Critical Windows Zero-Day Flaw Warning
Microsoft issued a warning concerning critical zero-day flaws in its Windows operating system that could enable remote code execution. The unpatched flaws are being exploited by hackers in targeted attacks. According to Microsoft, two remote code execution vulnerabilities exist in the way Windows' Adobe Type Manager Library handles certain fonts. Adobe Type Manager is a font management tool built into both Mac OS and Windows operating systems, and produced by Adobe.
The flaw exists because the Windows version of Adobe Type Manager Library improperly handles a specially-crafted multi-master font (called the Adobe Type 1 PostScript format). Type 1 vector outline fonts are a specialized form of PostScript, which contain instructions for building outlines from scaleable lines and curves
There are many ways a hacker could exploit the vulnerabilities. For example, a hacker could convince a user to open a specially crafted document or view it in the Windows Preview pane. Windows Preview pane is used by the Windows Explorer file manager application to preview pictures, video, and other content.
All versions of Windows are affected, including Windows 10, as well as versions of Windows 7, Windows 8.1, Windows RT, Windows Server 2008, Windows Server 2012, Windows Server 2016 and Windows Server 2019. While no patches are available yet, Microsoft recommended some workarounds. This includes disabling the preview pane and details pane in Windows. Blocking this would mean that Windows Explorer will not automatically display OpenType fonts. Other workarounds include disabling the WebClient service. Microsoft said it is currently working on a fix and that a patch would likely come during its regularly scheduled Patch Tuesday updates.