MANILA, Philippines – Microsoft released an emergency patch on Monday, July 20, that addresses a security flaw in the font driver of Windows machines.

The flaw, according to Microsoft, if exploited, could “allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that contains embedded OpenType fonts.”

This means the way Microsoft Windows handles fonts could allow an attacker to take over someone else’s computer.

The patch is applicable to Windows Vista, 7, 8, 8.1, Server 2008, Server 2008 R2, Server 2012, Server 2012 R2, RT, and RT 8.1. ZDNet added that a Microsoft spokesperson confirmed in an emailed statement that Windows 10 Insider Preview is also affected.

The emergency patch can be picked up over Windows Update.

ZDNet said that Google’s Project Zero and security firm FireEye were credited for finding the security flaw. – Rappler.com