Microsoft has released an emergency patch for a critical flaw, affecting all supported versions of Windows. They said the vulnerability, if exploited, could "allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that contains embedded OpenType fonts.
"http://www.zdnet.com/article/microsoft-releases-emergency-patch-for-critical-windows-flaw/?tag=nl.e589&s_cid=e589&ttag=e589&ftag=TREc64629f