CVE-2019-1150

Name of the Vulnerable Software and Affected Versions Windows (affected versions not specified)

Description The issue is related to errors in handling specially crafted embedded fonts in the Windows font library. Exploitation of this issue could allow a remote attacker to execute arbitrary code and gain control over the vulnerable system. This could be achieved through a specially crafted web page or document. In a web-based attack, an attacker would need to convince users to view a malicious website, potentially by tricking them into clicking a link or opening an attachment. The attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Users with limited user rights might be less affected than those with administrative rights.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.