Hackers Are Exploiting Previously Undisclosed Windows Vulnerability

Posted on March 24, 2020 by Mehedi Hassan in Windows, Windows 10 with 4 Comments

Microsoft has discovered a new vulnerability that is being exploited by attackers in all supported versions of Windows.

The previously undisclosed vulnerability affects Windows 10 as well. There is currently no patch available for the vulnerability, but Microsoft is actively working on a fix (via TechCrunch).

The security vulnerability is to do with the Adobe Type Manager Library in Windows. “Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format,” notes Microsoft.

Attackers can exploit the vulnerability by luring users into open or preview a “specially crafted” document which, when opened, could allow the attacker to remotely run malware on the user’s device.

Microsoft has provided some possible workarounds for the issue here.

The more worrying problem here is that Microsoft says it is aware of “limited target attacks” that are leveraging this vulnerability and has listed it as a critical vulnerability. Microsoft will be releasing a fix for this issue for all supported versions of Windows — however, it won’t be releasing the fix for the regular, non-enterprise version of Windows 7 as it’s already reached end of support earlier this year.

Tagged with ,

Join the discussion!

BECOME A THURROTT MEMBER:

Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate

Register
Comments (4)

4 responses to “Hackers Are Exploiting Previously Undisclosed Windows Vulnerability”

  1. Avatar

    wright_is

    What is confusing is that it is rated as critical on all versions of Windows 10, yet the affected library isn't even installed on machines after Windows 10 1709... How can they be critically vulnerable, if the library with the critical flaw isn't even on the PC in question?

    Tilt...

    • Avatar

      phil_adcock

      In reply to wright_is:I believe this would be due to the fact that Windows 10 still has that library in some version. As we continue to hear, PC's are not being upgraded as quickly as Microsoft would like. While your machine and my machine may be up to date. From a business stand point looking at who may be affected (Medical offices, hospitals, larger corporations.) and with a large portion of people who usually work in the office working from home... I would say critical was the appropriate flag so a solution can be implemented as quickly as possible.


      • Avatar

        crfonseca

        In reply to Phil_Adcock:

        Also, while it's not installed in newer versions, if you're upgrading from an older version that did install it, it'll probably still be in there somewhere.

        This didn't use to be an issue when upgrading Windows meant getting an entire new PC with the new version of Windows pre-installed, but with Windows 10 Microsoft really wants everyone to upgrade to the latest version of Windows on top of the previous versions.

      • Avatar

        wright_is

        In reply to Phil_Adcock:

        Microsoft's mitigation for Windows 10 doesn't work on any of the machines I've looked at. The files you need to rename just don't exist.


        @crfonseca I've checked PCs back to about 2016 and I haven't found any with the DLL yet. But I expect it is on older PCs that upgraded from Windows 7/8 and have been upgraded within 10 since then.

Leave a Reply