{"id":32562,"date":"2019-12-10T22:33:00","date_gmt":"2019-12-10T22:33:00","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/"},"modified":"2019-12-10T22:33:00","modified_gmt":"2019-12-10T22:33:00","slug":"its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/","title":{"rendered":"It&#8217;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2019\/12\/10\/shutterstock_wrapped_box.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>With the year winding to a close and the holiday parties set to kick off, admins will want to check out the December Patch Tuesday load from Microsoft, Adobe, Intel, and SAP and get them installed before downing the first of many egg nogs.<\/p>\n<h3 class=\"crosshead\"><span>Redmond gifts admins a light burden<\/span><\/h3>\n<p>This month is a relatively small patch bundle from Microsoft, with fixes kicked out for just <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/releasenotedetail\/2019-Dec\">36 CVE-listed bugs<\/a>, only seven of which are considered to be critical risks by Redmond standards.<\/p>\n<p>Not among those seven is <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1458\">CVE-2019-1458<\/a>, a flaw believed to be under active attack in the wild. The bug, an elevation of privilege error caused by the handling of objects in memory, is said to have been chained with <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.kaspersky.com\/blog\/google-chrome-zeroday-wizardopium\/29126\/\">a Chrome flaw<\/a> to let attackers remotely attack PCs, and is just rated as important.<\/p>\n<p>&#8220;When that [Chrome] bug became public, there was speculation it was being paired with a Windows kernel bug to escape the sandbox,&#8221; <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.zerodayinitiative.com\/blog\/2019\/12\/10\/the-december-2019-security-update-review\">explained<\/a> Dustin Childs of the Trend Micro ZDI. &#8220;While it\u2019s not confirmed this patch is connected to those Chrome attacks, this is the type of bug one would use to perform a sandbox escape.&#8221;<\/p>\n<p>Also of note is <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1471\">CVE-2019-1471<\/a>, a critical hypervisor escape bug that would allow an attacker running on a guest VM to execute code on the host box.<\/p>\n<p>The bulk of this month&#8217;s critical fixes were for a series of five remote code execution flaws in Git for Visual Studio. In each of the flaws, said to be caused by improper handling of command-line input, an attacker would launch the exploit by convincing the target to clone a malicious repo.<\/p>\n<p>The remaining critical patch is for <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1468\">CVE-2019-1468<\/a>, a play on the tried-and-true font-parsing vulnerability. In the wild, an attacker would embed the poisoned font file in a webpage and attack any system that visits.<\/p>\n<p>For Office, the December bonanza brings fixes for a denial of service bug in Word (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1461\">CVE-2019-1461<\/a>), a remote code execution flaw in PowerPoint (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1462\">CVE-2019-1462<\/a>), and an information disclosure flaw in Excel (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1464\">CVE-2019-1464<\/a>). In each case the attacker would convince the mark to open a poisoned document file.<\/p>\n<h3 class=\"crosshead\"><span>Adobe wraps up Acrobat and Photoshop fixes<\/span><\/h3>\n<p>For Adobe, there are updates for Acrobat, Photoshop, Brackets, and ColdFusion.<\/p>\n<p>The bulk of the fixes will apply to Acrobat and Acrobat Reader, where a total of 21 CVE-listed bugs <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/helpx.adobe.com\/security\/products\/acrobat\/apsb19-55.html\">were patched<\/a>. Of those, six were information disclosure via out-of-bounds read flaws, while one was privilege escalation by changing default directories.<\/p>\n<p>The remaining vulnerabilities allowed arbitrary code execution via security bypass, untrusted pointer dereference, buffer errors, heap overflows, use-after-free conditions, and out of bounds read and write.<\/p>\n<p>For Photoshop, two CVE-listed bugs (CVE-2019-8253, CVE-2019-8254) are patched on Windows and macOS. Each would potentially allow arbitrary code execution if exploited.<\/p>\n<p>Developers will want to pay attention to two Adobe patches in particular. In Brackets, there is one flaw allowing arbitrary code execution (CVE-2019-8255), and in ColdFusion there was a single privilege escalation flaw (CVE-2019-8256).<\/p>\n<p>Adobe says none of the patched bugs are currently being targeted in the wild.<\/p>\n<h3 class=\"crosshead\"><span>Intel&#8217;s December patches: More than just Plunderbolt<\/span><\/h3>\n<p>On Tuesday morning, <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.theregister.co.uk\/2019\/12\/10\/intel_sgx_youve_been_plunderstruck\/\">word broke<\/a> about Plunderbolt, the latest side-channel flaw for Intel processors. That advisory was one of <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/blogs.intel.com\/technology\/2019\/11\/ipas-security-advisories-for-december-2019\/\">11 from Chipzilla<\/a> this month.<\/p>\n<p>Others included a set of <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.intel.com\/content\/www\/us\/en\/security-center\/advisory\/intel-sa-00323.html\">privilege escalation flaws<\/a> in NUC firmware, <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.intel.com\/content\/www\/us\/en\/security-center\/advisory\/intel-sa-00237.html\">escalation of privilege<\/a> via Linux Administrative Tools, and <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.intel.com\/content\/www\/us\/en\/security-center\/advisory\/intel-sa-00317.html\">elevation of privilege errors<\/a> in the handing of virtual environments.<\/p>\n<h3 class=\"crosshead\"><span>SAP drops December fixes<\/span><\/h3>\n<p>For those using SAP software, there are a total of <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/wiki.scn.sap.com\/wiki\/pages\/viewpage.action?pageId=533660397\">seven security notes<\/a> this month, including fixes for bugs in Adaptive Server Enterprise (CVE-2019-0402), SAP BusinessObjects (CVE-2019-0395) and SAP Enable Now (CVE-2019-0405). \u00ae<\/p>\n<p>READ MORE <a href=\"https:\/\/go.theregister.co.uk\/feed\/www.theregister.co.uk\/2019\/12\/10\/patch_tuesday_december_2019\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>End 2019 with a Patch Tuesday from Microsoft, Adobe, SAP and Intel With the year winding to a close and the holiday parties set to kick off, admins will want to check out the December Patch Tuesday load from Microsoft, Adobe, Intel, and SAP and get them installed before downing the first of many egg nogs.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":32563,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-32562","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>It&#039;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"It&#039;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-12-10T22:33:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/01\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"563\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"It&#8217;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font\",\"datePublished\":\"2019-12-10T22:33:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/\"},\"wordCount\":641,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/01\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/\",\"name\":\"It's the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/01\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg\",\"datePublished\":\"2019-12-10T22:33:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/01\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/01\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg\",\"width\":1000,\"height\":563},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"It&#8217;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"It's the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/","og_locale":"en_US","og_type":"article","og_title":"It's the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-12-10T22:33:00+00:00","og_image":[{"width":1000,"height":563,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/01\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"It&#8217;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font","datePublished":"2019-12-10T22:33:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/"},"wordCount":641,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/01\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/","url":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/","name":"It's the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/01\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg","datePublished":"2019-12-10T22:33:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/01\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/01\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font.jpg","width":1000,"height":563},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/its-the-end-of-the-20-teens-and-your-windows-pc-can-still-be-pwned-by-nothing-more-than-a-simple-bad-font\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"It&#8217;s the end of the 20-teens, and your Windows PC can still be pwned by nothing more than a simple bad font"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/32562","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=32562"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/32562\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/32563"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=32562"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=32562"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=32562"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}