Windows Zero-Day Remote Code Execution Vulnerability
"ADV200006 | Type 1 Font Parsing Remote Code Execution Vulnerability", a zero-day vulnerability in the Windows 7, was reported on 2020-03-23, which is said to be less effective in Windows 10.
How To Mitigate It
As one of the workarounds, Microsoft suggests to:
Disable the Preview Pane and Details Pane in Windows Explorer
Keyboard Shortcuts
Ones of the easiest ways are to use the shortcuts in Explorer with your keyboard:
- Alt + "P" toggles "Preview Pane".
- Alt + Shift + "P" toggles "Details Pane".
Command Lines
By the way, here are the ways to use command lines to edit registries.
They are suitable for automation and bulk batch execution.
Caution: Editing registries in wrong ways can break your computer.
First, run command prompt as an administrator.
For example, press Windows + "R" to open the "Run" box, type "cmd" into it and then press Ctrl + Shift + Enter. You'll get the prompt after permission's asked.
#1. Disable Preview Pane
Add NoReadingPane
value as DWORD and set 1 as its data in it as below:
reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoReadingPane /t REG_DWORD /d 1 /f
Note: "HKCU" means "HKEY_CURRENT_USER". /f
is an option to overwrite the value without confirmation.
Once you sign out and sign in again, the Preview Pane in your Explorer will be disabled.
-
How to restore it
reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoReadingPane /d 0 /f
#2. Disable Details Pane
Edit IconsOnly
value's data as below:
reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v IconsOnly /d 1 /f
Once you sign out and sign in again, the Details Pane in your Explorer will show just icons instead of rendered content like thumbnails.
-
How to restore it
reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v IconsOnly /d 0 /f
Here, the two panes are disabled.
The Explorer looks like this.