The Windows Remote Assistance tool that ships with all Windows distributions can be can be abused for clever hacks in targeted attacks. Belgian security researcher Nabeel Ahmed discovered a vulnerability in this tool in February last year and reported it to Microsoft in October. A patch for the issue —tracked as CVE-2018-0878— was included with the March 2018 Patch Tuesday, released last week.
ORIGINAL SOURCE: Bleeping Computer