The vulnerability could allow an attacker to execute arbitrary code on the system.
Microsoft re-released the patch, which was intended to remedy a serious security flaw in the application font OpenType. Note that after the release of the original version of the patch, the font was unreadable for many users of PowerPoint and other applications.
Problematic patch was released on December 11, 2012, and affected users of PowerPoint, Quark Xpress and Coreldraw. Released updates do not allow the program to recognize the characters OpenType font size larger than 15 pixels. Yesterday, December 20, Microsoft re-released a patch that removed the previous problem. “Customers who have automatic updating enabled should not take any action. Those who install the update manually, we strongly recommend you upgrade as soon as possible “- said representatives of Microsoft. Note that the potential security flaw could allow an attacker to remotely execute arbitrary code on a victim’s computer via infected web-page or document.