Microsoft warned of limited targeted attacks that could leverage unpatched vulnerabilities in the Adobe Type Manager Library. Microsoft said that it’s working on a fix for this zero-day flaw and hinted at a future release during this month’s Patch Tuesday. Active Directory (AD) admins can mitigate the issue on corporate devices running versions of Windows vulnerable to abuse, you can do it in one go with the help of group policies as Microsoft MVP Sylvain Cortes explained in a blog post. Microsoft’s workarounds aren’t easy to implement to mitigate attacks in an enterprise AD environment.
Source: https://www.bleepingcomputer.com/news/security/how-to-mitigate-the-windows-font-parsing-zero-day-bug-via-gpo/