An advisory from Microsoft has been issued to address remote code execution vulnerabilities in the Adobe Type Manager Library affecting all supported versions of Windows and Windows Server operating systems. An attacker can exploit these vulnerabilities to take control of an affected system according to the Cybersecurity and Infrastructure Security Agency.
The latest Windows 7 vulnerability gives enterprises yet another reason to migrate away from Windows 7. If a user opens a malicious document on Windows 7, the machine can be immediately compromised. The vulnerability is still unpatched to date. As a workaround, enterprises are advised to apply one of the mitigations provided by Microsoft in the link below.* For enterprises that are stuck with Windows 7 because the need to support legacy applications, consider using OS/VM isolation solutions that allow you to run Windows 7 and Windows 10 simultaneously, side-by-side, so that the Windows 7 OS is isolated to a separate segment that isn\’t directly connected to the internet and to sensitive corporate assets.