Rewterz Threat Advisory – ICS: Siemens Climatix Cross-Site Scripting Vulnerability
April 15, 2020Rewterz Threat Advisory – Microsoft OneDrive for Windows Elevation of Privilege Vulnerability
April 15, 2020Rewterz Threat Advisory – ICS: Siemens Climatix Cross-Site Scripting Vulnerability
April 15, 2020Rewterz Threat Advisory – Microsoft OneDrive for Windows Elevation of Privilege Vulnerability
April 15, 2020Severity
High
Analysis Summary
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format.
Impact
Remote code execution
Affected Vendors
Microsoft
Remediation
Microsoft has released upgraded patches for the affected product.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1020