Emergency Security Patch Now Available for all Versions of Windows

By CIOReview | Monday, July 27, 2015
860
1393
283

FREMONT, CA: Microsoft has recently released a security update pertaining to a vulnerability in Microsoft Windows. A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts.

An attacker who successfully exploited this vulnerability could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

There are multiple ways an attacker could exploit this vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage that contains embedded OpenType fonts. The update addresses the vulnerability by correcting how the Windows Adobe Type Manager Library handles OpenType fonts.

The security update is termed as critical for all supported releases of Microsoft Windows. The update addresses the vulnerability by correcting how the Windows Adobe Type Manager Library handles OpenType fonts.

Assuming that a majority of customers have automatic updating enabled, they would not be required to take any action as the update will be downloaded automatically. However, the customers who haven’t enabled automatic updating or who prefer installing manually, can use links provided in the Affected Software section to download and install the update.