Microsoft Reveals New Windows Vulnerability That Allows Hackers to Remotely Run Malware on PCs

Microsoft has said that it is working on a fix. In the meantime, the company suggested few temporary measures.

Advertisement
By Darab Mansoor Ali | Updated: 24 March 2020 16:50 IST
Highlights
  • Microsoft issued an advisory for the new Windows vulnerability
  • Microsoft has suggested temporary measures till the next security update
  • The vulnerability involves Adobe’s Type Manager Library

Hackers can remotely run malware if they successfully exploit the vulnerability

Microsoft has found a previously undisclosed vulnerability its Windows operating system for PCs. The vulnerability can be found in all supported versions of Windows, including Windows 10. Microsoft announced the vulnerability in an advisory, which said that it is being exploited in the form of limited targeted attacks. It means that if a hacker successfully pulls off an attack on a computer, they could remotely run a malware on the victim's device. The vulnerability involves Adobe's Type Manager Library that is used to render fonts in Windows.

In its advisory, Microsoft said that the limited targeted attacks that could leverage unpatched vulnerabilities in the Adobe Type Manager Library, through which an attacker can leverage fonts. The company further provided guidelines to users in order to minimize the risk until a security update is released. Using this vulnerability, an attacker can trick a user into opening a specially crafted document or view it in the Windows Preview pane, through which they can remotely run a malware or a malicious code on a victim's device.

"There are multiple ways an attacker could exploit the vulnerability, such as convincing a user to open a specially crafted document or viewing it in the Windows Preview pane," the Microsoft advisory said. The vulnerability has been rated 'critical,' Microsoft's highest rating.

Advertisement

Now, although Microsoft has said that it is working on a fix, the company notes that updates to address security vulnerabilities are usually released as part of Update Tuesdays, which is the second Tuesday of every month. In the meantime, it has listed out instructions for a few temporary workarounds in the advisory, like disabling Preview Pane and Details Pane in Windows Explorer. Microsoft has also listed out the Windows versions that are affected by this vulnerability.

Advertisement

In its statements to The Verge and TechCrunch, Microsoft said that the security patch for this vulnerability will land on the next Update Tuesday, slated for April 14.

 
Post your comments

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Microsoft, Microsoft Windows, Malware, Adobe Type Manager
Redmi Smart TV Max With 98-Inch 4K Display Launched: All You Need to Know
Coronavirus: Vivo to Donate N95, Surgical Masks in India
Advertisement

Related Stories

Amazon's AWS Interconnect Preview Announced With Support for Private Links Between Cloud Services
2 December 2025
Nvidia CEO Jensen Huang Says Company Managers Using Less AI Are Insane: Report
26 November 2025
Xbox November 2025 Update Brings Gaming Copilot, Full Screen Experience Expansion and Cloud Upgrades
26 November 2025
Microsoft Joins AI Shopping War, Brings New Features to Copilot in Edge Browser
26 November 2025
Microsoft’s Copilot AI Chatbot to No Longer Be Available on WhatsApp Next Year
26 November 2025
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. ACT Fibernet Launches New Broadband Plans With Free OTT Subscriptions
  2. HMD 101, HMD 100 With Built-In Radio Launched in India at These Prices
  3. OnePlus 15R Surfaces on Benchmarking Site Ahead of India Launch
  4. Flipkart Buy Buy 2025 Sale With Discounts on iPhone 16 Begins on This Date
  5. Flipkart Buy Buy 2025 Sale: Nothing Phone 3, Phone 3a Deals Revealed
  6. Motorola Edge 70 With Pantone's 2026 Colour, Swarovski Crystals Launched
  7. Nothing Phone 3a Lite Goes on Sale in India at This Price
  8. Realme Watch 5 Launched in India With Up to 16-Day Battery Life: See Price
  9. FaceTime, Snapchat Video Calls Have Reportedly Been Blocked in Russia
  10. Crypto Traders Await US Fed Signals as Bitcoin Price Drops to $91,900
#Latest Stories
  1. Airtel Discontinues Two Prepaid Recharge Packs in India With Data Benefits, Free Airtel Xtreme Play Subscription
  2. Samsung Galaxy Phones, Devices Are Now Available via Instamart With 10-Minute Instant Delivery
  3. NotebookLM App Gets an In-Built Camera, Lets Users Upload Images as a Source
  4. HMD 101 Launched in India With 1,000mAh Battery, Auto Call Recording Alongside HMD 100: Price, Features
  5. Crypto Traders Await US Fed Signals as Bitcoin Price Drops to $91,900
  6. Nothing Phone 3a Lite Goes on Sale in India: See Price, Offers, Availability
  7. Realme Narzo Phones Confirmed to Launch in India Soon via Amazon
  8. Samsung Galaxy Watch Ultra 2 Launch Timeline Leaked; Could Debut Alongside Samsung Galaxy Watch 9
  9. Samsung Galaxy S26 Series May Get Exynos 2600 Chipset Exclusively in South Korea: Report
  10. Apple’s FaceTime Reportedly Blocked in Russia Alongside Snapchat’s Video Calling Feature
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.