Security News > 2018 > August > Windows zero-day flaw and PoC unveiled via Twitter
A Windows zero-day local privilege escalation flaw and a Proof-of-Concept exploit for it have been revealed on Monday by someone who goes by SandboxEscaper on Twitter. The user in question deleted the account soon after, but not before sharp-eyed security researchers were able to follow the link to the GitHub repository hosting the PoC exploit. Will Dormann, a vulnerability analyst at the CERT/CC, tested the exploit and confirmed that it “works well in a fully-patched … More → The post Windows zero-day flaw and PoC unveiled via Twitter appeared first on Help Net Security.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/Jlc8TUSP4PU/
Related news
- “Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days (source)
- New Windows SmartScreen bypass exploited as zero-day since March (source)
- Windows driver zero-day exploited by Lazarus hackers to install rootkit (source)
- Microsoft fixes Windows Smart App Control zero-day exploited since 2018 (source)
- Adobe fixes Acrobat Reader zero-day with public PoC exploit (source)
- Windows vulnerability abused braille “spaces” in zero-day attacks (source)