Microsoft warned about limited targeted attacks exploiting two zero-day vulnerabilities found in the Windows Adobe Type Manager Library. The two vulnerabilities are said to be remote code execution (RCE) vulnerabilities that exist in the way that Windows’ Adobe Type Manager Library handles certain fonts. The bug can be exploited by tricking the victim into opening malicious document or view them via Windows preview pane. If successful, an attacker can remotely run malware on the victim’s machine. The vulnerabilities are identified as Critical and impacting machines running desktop and server Windows releases.
Windows 7, Windows 8.1, and Windows RT
Windows Server 2008, Windows Server 2012, Windows Server 2016 and Windows Server 2019
Windows 10 (The threat is low due to mitigations that were put in place with the first version released in 2015)
CERT-PH recommends the following actions be taken:
Follow the detailed instructions on workarounds for different windows versions provided by Microsoft while a fix is not yet available.
Regularly monitor the Microsoft website to check if a formal patch is released. Apply and test patch to affected systems when available.