CVE-2019-1145

Name of the Vulnerable Software and Affected Versions Windows Font Library (affected versions not specified)

Description The issue is related to errors in handling specially crafted embedded fonts, which can allow a remote attacker to execute arbitrary code and gain control over the vulnerable system. This can be achieved through various means, such as hosting a specially crafted website or providing a specially crafted document file. The attacker would need to convince users to view the website or open the document file. Users with fewer user rights on the system could be less impacted than those operating with administrative user rights.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.