{"id":13844,"date":"2020-03-27T02:16:30","date_gmt":"2020-03-27T01:16:30","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=13844"},"modified":"2022-02-15T17:52:01","modified_gmt":"2022-02-15T16:52:01","slug":"0patch-fixes-0-day-adobe-type-library-bug-in-windows-7","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/03\/27\/0patch-fixes-0-day-adobe-type-library-bug-in-windows-7\/","title":{"rendered":"0patch fixes 0-day Adobe Type Library bug in Windows 7"},"content":{"rendered":"

[German<\/a>]The team from ACROS Security have released a micropatch for Windows 7 SP1 (without ESU) for the 0-day vulnerability in the Adobe Type 1 Library that is included in all versions of Windows.  <\/p>\n

<\/p>\n

The 0-day vulnerability in the Adobe Type Library <\/h2>\n

\"\"On March 23, 2020, Microsoft publicly disclosed a 0-day vulnerability in the Adobe Type Library of all still supported versions of Windows. According to ADV200006<\/a>, Microsoft writes that there are two vulnerabilities in Microsoft Windows that allow remote code execution because the Windows Adobe Type Manager Library does not correctly handle a specially crafted multi-master font – the Adobe Type 1 PostScript format. <\/p>\n

An attacker could exploit the vulnerability, for example, by tricking a user into opening a specially crafted document or viewing it in the Windows preview window. Microsoft is working to resolve this vulnerability and has posted some mitigation measures in ADV200006<\/a>. I had reported in detail in the blog post 0-day vulnerability in Windows Adobe Type Library<\/a>. <\/p>\n

0patch brings a fix for Windows 7 SP1<\/h2>\n

There are two problems associated with the safety instructions in ADV200006<\/a>: There is currently no patch from Microsoft, and users of Windows 7 SP1 and Windows Server 2008 R2 who do not have an ESU license will no longer receive the security updates released by Microsoft.<\/p>\n

Yesterday I had already noticed that ACROS Security has developed and is testing a micropatch for the 0-day vulnerability. I had asked Mitja Kolsek from ACROS Security to keep me up to date about this process. I have just been informed by a private information that the micropatch has been released for Windows 7 SP1 and Windows Server 2008 R2. Meanwhile there is also a message on Twitter. <\/p>\n

\n

We have just issued our first micropatch for the yet-unpatched Type 1 Font Parsing Remote Code Execution Vulnerability that was found exploited in limited targeted attacks. https:\/\/t.co\/T8xK8bTIvr<\/a> pic.twitter.com\/lTi7uXu5Ri<\/a><\/p>\n

\u2014 0patch (@0patch) March 26, 2020<\/a><\/p><\/blockquote>\n