[ALERT] ADVISORY ON WINDOWS TYPE 1 FONT PARSING REMOTE CODE EXECUTION VULNERABILITY

Background Description
Microsoft has warned public that Windows code-execution zero day is under active exploit. The vulnerability consists of two code-execution flaws that can be triggered from improper handling of maliciously crafted master fonts in the Adobe Type 1 Postscript format. Attackers can exploit them by convincing a target to open a specially crafted document or viewing it in the Windows preview pane.


Impact