https://www.systemtek.co.uk/2019/03/microsoft-comctl32-arbitrary-code-execution-vulnerability-cve-2019-0765/
Microsoft Comctl32 Arbitrary Code Execution Vulnerability [CVE-2019-0765]