A tricky vulnerability patched in the Windows PDF Library could have put Microsoft Edge users on Windows 10 systems at risk for remote code execution attacks. The vulnerability, CVE-2016-3319, when exploited corrupts memory and allows an attacker to run arbitrary code with the same privileges as the user. The flaw has not been publicly disclosed nor attacked, it s expected to be an attractive attack vector for hackers. Microsoft suggested that organizations could remove Edge from the PDF reader default type association as a temporary workaround.
Source: https://threatpost.com/windows-pdf-library-flaw-puts-edge-users-at-risk-for-rce/119773/