Hackers Are Exploiting Previously Undisclosed Windows Vulnerability

Mehedi Hassan
Mar 24, 2020
4

Microsoft has discovered a new vulnerability that is being exploited by attackers in all supported versions of Windows.

The previously undisclosed vulnerability affects Windows 10 as well. There is currently no patch available for the vulnerability, but Microsoft is actively working on a fix (via TechCrunch).

Windows Intelligence In Your Inbox

Sign up for our new free newsletter to get three time-saving tips each Friday — and get free copies of Paul Thurrott's Windows 11 and Windows 10 Field Guides (normally $9.99) as a special welcome gift!

"*" indicates required fields

[ad unit=’in_content_premium_block’]

The security vulnerability is to do with the Adobe Type Manager Library in Windows. “Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format,” notes Microsoft.

Attackers can exploit the vulnerability by luring users into open or preview a “specially crafted” document which, when opened, could allow the attacker to remotely run malware on the user’s device.

Microsoft has provided some possible workarounds for the issue here.

The more worrying problem here is that Microsoft says it is aware of “limited target attacks” that are leveraging this vulnerability and has listed it as a critical vulnerability. Microsoft will be releasing a fix for this issue for all supported versions of Windows — however, it won’t be releasing the fix for the regular, non-enterprise version of Windows 7 as it’s already reached end of support earlier this year.

Tagged with

Please check our Community Guidelines before commenting

Conversation 4 comments

wright_is
Premium Member
24 March, 2020 - 9:37 am

What is confusing is that it is rated as critical on all versions of Windows 10, yet the affected library isn't even installed on machines after Windows 10 1709… How can they be critically vulnerable, if the library with the critical flaw isn't even on the PC in question?Tilt…

Log in to Reply

phil_adcock

24 March, 2020 - 12:53 pm

<blockquote><a href="#533427">In reply to wright_is:</a>I believe this would be due to the fact that Windows 10 still has that library in some version. As we continue to hear, PC's are not being upgraded as quickly as Microsoft would like. While your machine and my machine may be up to date. From a business stand point looking at who may be affected (Medical offices, hospitals, larger corporations.) and with a large portion of people who usually work in the office working from home… I would say critical was the appropriate flag so a solution can be implemented as quickly as possible. </blockquote> 

Log in to Reply

crfonseca
Premium Member
24 March, 2020 - 1:12 pm

<blockquote><a href="#533534">In reply to Phil_Adcock:</a></blockquote>Also, while it's not installed in newer versions, if you're upgrading from an older version that did install it, it'll probably still be in there somewhere.This didn't use to be an issue when upgrading Windows meant getting an entire new PC with the new version of Windows pre-installed, but with Windows 10 Microsoft really wants everyone to upgrade to the latest version of Windows on top of the previous versions. 

Log in to Reply
wright_is
Premium Member
25 March, 2020 - 8:16 am

<blockquote><a href="#533534">In reply to Phil_Adcock:</a></blockquote>Microsoft's mitigation for Windows 10 doesn't work on any of the machines I've looked at. The files you need to rename just don't exist. @crfonseca I've checked PCs back to about 2016 and I haven't found any with the DLL yet. But I expect it is on older PCs that upgraded from Windows 7/8 and have been upgraded within 10 since then.

Log in to Reply

About author

Mehedi Hassan

Mehedi has been covering all things Microsoft for years, including all the breaking news about Windows Phone, to all the developments to Windows 10 and other consumer-oriented products from Redmond. Mehedi has gained substantial experience as a developer building rich web-based applications and mobile applications while designing intuitive user experiences on the side.

View Articles

Currently on Forums
Visit the forums
- Drunk purchase “microsoftyousuck.com”
  Posted by andybarzyk
  
  2
  comments
- [CLOSED] Ask Paul for this Friday, April 19
  Posted by Paul Thurrott
  
  9
  comments
- Questions for 4 / 19?
  Posted by Brad Sams
  
  4
  comments
- What does Microsoft know that we don’t?
  Posted by Sarah Duguay
  
  3
  comments
Podcasts
Podcast Hub
- Microsoft’s NEW Loop Feature to Challenge Notion
  
  Aired on April 19, 2024 by Russell Smith with 0 Comments
- First Ring Daily 1586: “Tech” Podcast
  
  Aired on April 19, 2024 by Brad Sams with 0 Comments
- The Sams Report: Microsoft Wants to Fragment Windows
  
  Aired on April 19, 2024 by Brad Sams with 0 Comments
- First Ring Daily 1585: Extensioned
  
  Aired on April 18, 2024 by Brad Sams with 0 Comments
Join the crowd where the love of tech is real - become a Thurrott Premium Member today!

Explore Premium Benefits

Hackers Are Exploiting Previously Undisclosed Windows Vulnerability

Windows Intelligence In Your Inbox

Tagged with

Share post

Conversation 4 comments

Drunk purchase “microsoftyousuck.com”

[CLOSED] Ask Paul for this Friday, April 19

Questions for 4 / 19?

What does Microsoft know that we don’t?

Microsoft’s NEW Loop Feature to Challenge Notion

First Ring Daily 1586: “Tech” Podcast

The Sams Report: Microsoft Wants to Fragment Windows

First Ring Daily 1585: Extensioned

Windows Intelligence In Your Inbox

Sections

About Thurrott

Contact

Our Other Sites

Subscribe