Microsoft warns of targeted attacks exploiting two zero-day remote code execution (RCE) vulnerabilities found in the Windows Adobe Type Manager Library. Microsoft has rated the vulnerabilities as Critical and says that they are impacting machines running desktop and server Windows releases, including Windows 10, Windows 8.1, Windows 7, and multiple versions of Windows Server. A fix for the vulnerabilities is currently being developed and hints at a future release during next month’s Patch Tuesday (on April 14) Microsoft advises customers to disable the Preview and Details panes in Windows Explorer to prevent the automatic display of OTF fonts.
Source: https://www.bleepingcomputer.com/news/security/microsoft-warns-of-hackers-exploiting-unpatched-windows-bugs/