Two remote code execution vulnerabilities exist in Microsoft Windows when the Windows Adobe Type Manager Library(atmfd.dll) improperly handles a specially-crafted multi-master font – Adobe Type 1 PostScript format. There are multiple ways an attacker could exploit the vulnerability, such as convincing a user to open a specially crafted document or viewing it in the Windows Preview pane. Potential attack vectors include Microsoft Word, OpenOffice, LibreOffice, old versions of browsers.
Patch will most likely arrive in the April patch Tuesday. Microsoft has released mitigations/workarounds.
Microsoft explains how to do all that and the impacts of these workarounds in the advisory. Please visit the below mentioned link.