An open Windows vulnerability lets attackers install malware through documents

Last night, Microsoft noted there’s an unpatched bug in Windows that might allow attackers to install malware or ransomware on your system through specially crafted documents. The company said in an advisory, that the system has two vulnerabilities that can be exploited to install malicious software through Remote Code Execution (RCE): Microsoft is aware of limited targeted attacks that could leverage un-patched vulnerabilities in the Adobe Type Manager Library, and is providing the following guidance to help reduce customer risk until the security update is released. Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type…

This story continues at The Next Web

Or just read more coverage about: Windows