Add or Remove Programs
entry for Security Update for Windows XP (KB908519)
. This critical security update for Windows XP addresses a vulnerability in Embedded Web Fonts that could allow remote code execution.A remote code execution vulnerability exists in Windows because of the way that it handles malformed embedded Web fonts. An attacker could exploit the vulnerability by constructing a malicious embedded Web font that could potentially allow remote code execution if a user visited a malicious Web site or viewed a specially crafted e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system.