The company said in an advisory, that the system has two vulnerabilities that can be exploited to install malicious software through Remote Code Execution (RCE): As ArsTechnica noted, the “Adobe Type Manager Library” is a system file often used to manage and render fonts published by Adobe in documents. Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format. There are multiple ways an attacker could exploit the vulnerability, such as convincing a user to open a specially crafted document or viewing it in the Windows Preview pane. [Read: Spain plans to use robots to test 80,000 people a day for the coronavirus] Recently, hackers have been using coronavirus related documents to steal data from people. With this new vulnerability out in the open, some might try and take advantage of the situation. So, until Microsoft issues a bug fix, it’s advisable to not download or open unknown documents, and disable the preview pane. We’ll keep tabs on when the company issues an update, and notify you, so that you can safely use your system.
